Information Security Management
ISMS according to ISO 27001
Data is electronically processed in practically every company these days. This necessitates special protection, especially in the case of sensitive information. In addition, legal regulations, e.g. for handling personal data and compliance regulations, must often be considered.
Consequently, reliable and permanently operational information security management is becoming an increasingly important factor for success in companies. Customers, partners and suppliers as well as government bodies expect optimum protection of data – and thus of company values – and early detection of risks.
ISO 27001
An information security management system (ISMS) certified according to the ISO 27001 standard provides the required protection for sensitive company data. We support you in every phase of setting up such a system:
- Selection and specification of scope of the IT system
- Determination of protection requirements
- Risk analysis
- Definition of measures
- Implementation
For this, it is crucial to specifically define the requirements in order to achieve an optimum and cost-efficient solution. Backed by our many years of experience and our ISO 27001 auditors, we can provide you with competent and individual support in achieving your company-specific security objectives.
Certification according to ISO 27001
After an ISMS has been set up, it is possible to apply for certification according to the ISO 27001 standard. This internationally recognised certificate allows you to prove that you have an operational ISMS at your disposal, furnishing you with one of the most valuable security seals in the international arena. This shows your customers and business partners that the issue of IT security is a top priority for you. You yourself benefit from a permanently high level of security which minimises current threats and the risks these can entail.
Our ISO 27001 auditors support you during the auditing process. If you are not sure whether you meet all the prerequisites for certification, we additionally offer the opportunity to conduct a pre-audit. For this, we check whether your ISMS complies with all the requirements of the certification authority so that you will be successful when it comes to the actual certification process.
If you do not need an ISO 27001 certificate right away, we also offer audits for “beginners-certificates” which are valid for one or two years.
