|
|
 |
|
|
ISO/IEC 27001 gap analysis
ISO/IEC 27001:2005 specifies the requirements for establishing, implementing, operating, monitoring, reviewing, maintaining and improving a documented Information Security Management System (ISMS). It specifies requirements for the management of the implementation of security controls. It is intended to be used with ISO 27002:2005, a security Code of Practice, which offers specific security controls to select from. Prior to the release of the ISO 27001 standard, organizations could only be certified against ISO/IEC 27001 standard.
The ISO 27001 gap analysis service is a comprehensive review of your company�s ISMS (Information Security Management System) in relation to ISO 27001 standard. The objective is to determine the gaps, or flaws in your existing security policies, procedures and controls.
Gap analysis provides accurate evaluation of organisation�s readiness to ISO 27001 and estimate amount of effort required to achieve the certification. This service is suitable for any organisation that already started to implement ISMS and in short-time plans to achieve ISO 27001 certification.
If you are interested in this service please contact us.
|
|
