Measuring compliance
Typically, at least one cycle of ISMS record artefacts are required prior to initial certification (to prove that the ISMS is functional). MWR are partnered with the British Standards Institute (BSI) and at the point you wish to progress to certification, a formal visit can be arranged.
The benefits of an MWR InfoSecurity ISO/IEC 27001 audit are:
- It can highlight any issue that may affect the success of the certification visit
- It can prove useful as a ‘dress rehearsal’ to educate staff on what to expect when the formal certification visit takes place
- The audit can be scheduled to exercise different parts of the business at different times to minimise business impact
- Can help to satisfy contractual audit requirements and demonstrate to third parties that security risk and internal controls are being adequately managed
- It can be used to measure the effectiveness of a third party’s security programme, providing you with the assurance that your data is suitably protected
If you do not wish to go for formal certification, an ISO/IEC 27001 audit, can also provide you with the assurance that you have an effective information security strategy and that it is being maintained.
The results of the audit service will be available through MWR InfoSecurity’s Secure Delivery Management Solution, Fasthold. This enables you to disseminate audit results to all key stakeholders within the business, efficiently and securely.
