top of page

ISO/IEC 27001

Information Security Management Systems 

ISO 27001_SGSI.jpg

ISO/IEC 27001 is an internationally recognized standard for Information Security Management. Information Security Management allows Organizations freedom to grow, innovate and expand their customer base, knowing that their confidential information will remain so.  

When considering ISO 27001 certification for your organization, you demonstrate interest in ensuring the security of your internal information, as well as that of your customers and suppliers.


This is a commitment to ensuring the confidentiality, integrity and availability of the assets that support your business.


The PGM can help you establish an Information Security Management System (ISMS) that ensures the identification of vulnerabilities and threats to information security by implementing tools for mitigation, control or elimination.



Basic overview of the ISO 27001 standard implementation process:

  • PHASE I Gap Analysis (if necessary)
  • PHASE II Introduction to the standard, Process Mapping and Planning

  • PHASE III Risk assessment and establishment of controls

  • PHASE IV ISMS Development

  • PHASE V Rollout Training and Informal Assessment

  • PHASE VI Review by Management and Internal Audit

  • PHASE VII Certification Audit

PGM's consultancy service on the implementation of the SGSI in accordance with ISO 27001, guarantees a system that is simple to maintain and  fully oriented to the Customer's needs. In carrying out internal audits in accordance with this  referential,  we guarantee that the  they are of added value for the organization.  

The set of services available are:

  • Support in the implementation and certification of an Information Security Management System (NP EN ISO/IEC 27001 );
  • Internal Audits of the Information Security Management System;

  • Customised training.

Consultant consultancy internal audit security information iso 27001

bottom of page