Once you decide to implement ISO 27001, the first step is to learn about its best practice recommendations and compare these to your existing processes. This will help you identify any gaps or weaknesses in your current quality management systems, and give practical advice on how to improve.
There are two main options for this stage – you can get one of our starter packs, or you can hire an ISO 27001 consultant to guide you through the process.
The next step is to plan how to introduce the key principles of quality management into your organisation.
Update or renew your processes according to the guidelines set out in the ISO 27001 standard, then communicate the changes internally. If you need extra support during this stage, an ISO 27001 consultant will be able to advise you and provide you with a gap analysis pre-assessment to make sure you’re ready for certification.
Once you and your consultant are satisfied that your quality management processes align with the principles set out in ISO 27001, it’s time to book your certification.
We will complete a full audit of your business processes. If they meet the requirements of ISO 27001, we will then issue you with certification.