Functio develop and implement Information Security Management Systems (ISMS) and /or Integrated Management Systems (IMS) to meet the standard and achieve certification to ISO 27001.
ISO 27001:2013 is an internationally recognised standard that confirms that an Organisation has a robust, comprehensive and externally audited Information Security Management System and is a mark that many organisations both look to achieve and are requested to have in place.
Many people think that an Information Security Management System only looks at the IT aspects within an organisation but in fact there is a much larger remit including but not limited to: –
- Information Technology
- Information and Systems Security
- Property Security
- Confidentiality and Data Protection
- Equipment and Asset Security
- Business Continuity
As part of the development and implementation of your ISMS or IMS, Functio will process map all your internal Information Security processes, provide business improvements based on experience and compliance with ISO 27001. Produce all required supporting registers and documents, such as your: –
- Legal register – establishing legal compliance of your organisation
- CROO register – Establishing the risk of failure of core processes and establishing objectives and opportunities for ongoing improvement
- Statement of Applicability – A comprehensive document detailing how compliance is achieved to core elements of ISO 27001
- Asset Register – Detailing all your Assets
- Internal Audit Plan – Establishing a plan to retain compliance
- Access Control Policy – Detailing how access to systems, assets and properties is managed
- Business Continuity Plan – Detailing how the business operates in emergencies and extreme circumstances
- Master Document Register – Detailing all documents, version numbers and review dates
- All required supporting forms
Functio work with our customers through all and at each stage of certification from Initial Consultation, Stage 1 Audits, Stage 2 Audits, Surveillance Audits, Re-Certification Audits and can undertake regular ISO Maintenance Services as required to retain your compliance and certification to the standard.
We provide a stress-free service essentially allowing you as much input as you wish as we develop and implement the system for you, working with customers with a heavy involvement right through to those that need the accreditation but simply don’t have time in their day to get all the elements completed.
Looking for ISO 27001 Certification an Integrated Management System or continued compliance and certification then please do not hesitate to contact us and discuss your requirements
