Service Description
Our professional association with various legal organization assist us in offer unmatched ISO 27001 certification services. It is the replacement for BS7799-2 and is titled "Information Security Management -Specification With Guidance for Use". This certification is intended for providing base for 3rd party audit and is 'synchronized' with the other management standards, such as ISO 9001 & ISO 14001.
The fundamental purpose of the ISO 27001 standard is to assist in establishing and maintaining an effectual information management system, using an incessant improvement approach. It focuses on CONFIDENTIALITY, INTEGRITY, AVAILABILITY of information and implements the OECD (Organization for Economic Cooperation and Development) principles, governing security of network systems and information. Its content includes:
* Cross reference with ISO 17799 controls
* Use of PDCA
* Information management system
* Terms and definitions
ISO 27001 Certification
The scheme is supported with a robust audit & certification scheme, as is the case of BS7799-2 standard. For clients who already possess the ISO 27001 certification, we assist them in value added audits against there information security management system.
The ISO 27000 Series
In October 2005, the final version of ISO 27001 was published. This is the foremost and only the first of a series of standards that supports information security.
