If you are faced with the task of implementing an ISO compliant ISMS, and needs assistance in one particular element, need some general guidance, or are just finding the task too daunting and don't know where to start, Seven Nine can help. A complete implementation includes:
1. Establishing Management Systems
•  Production of core Management Framework, Security Policy, and Scope
•  Development of education, awareness and reporting processes
2. Risk Assessment
•  Identification of information assets
•  Assessment of threats, vulnerabilities and impacts for each asset
3. Risk Treatment
•  Selection of controls to reduce each risk to an acceptable level
•  Production of the Statement of Applicability (SoA), defining the required control objectives, controls and countermeasures
•  Identification, implementation and testing of procedures
4. Audit and Review
•  Internal audit to monitor, review and improve the ISMS
5. ISO 27001 Certification
•  Seven Nine is not a certification body, but will work with your selected third party auditors through to certification and beyond.

Seven Nine, 11 Penny Long Lane, Derby, DE22 1AX | Tel: 01332 551 219 | Web: www.sevennine.co.uk

Site designed by Trisoft