ISO/IEC 27001
Information Security Management Systems
ISO 27001 is an internationally recognized standard for Information Security Management. Information Security Management allows organizations the freedom to grow, innovate and expand their customer base, knowing that their confidential information will remain so.
When considering ISO 27001 certification for your organization, you demonstrate interest in ensuring the security of your internal information, as well as that of your customers and suppliers.
This is a commitment to ensure the confidentiality, integrity and availability of the assets that support your business.
PGM can help you establish an Information Security Management System (ISMS) that ensures the identification of vulnerabilities and threats to information security and tools are implemented for their mitigation, control or elimination.
Basic overview of the ISO 27001 standard implementation process:
- PHASE I Gap Analysis (if necessary)
-
PHASE II Introduction to the standard, Process Mapping and Planning
-
PHASE III Risk assessment and establishment of controls
-
PHASE IV ISMS Development
-
PHASE V Rollout Training and Informal Assessment
-
PHASE VI Review by Management and Internal Audit
-
PHASE VII Certification Audit
The service of PGM CONSULTING in the implementation of the ISMS in accordance with ISO 27001, ensures a system that is simple to maintain and fully oriented to the Customer's needs. In carrying out internal audits in accordance with this referential, we guarantee that is added value for the organization.
The set of services available are:
- Consultancy in the implementation and certification of an Information Security Management System (ISO/IEC 27001);
-
Internal Audits of the Information Security Management System;
-
Customised training.