Today, information is an asset which, like other important business assets, needs protection. Implementing an Information Security Management System (ISMS) can protect information from a wide range of threats in order to ensure business continuity, minimize business damage and maximize return on investments and business opportunities.

The Security Challenge

What is an Information Security Management System? An ISMS is the means by which Senior Management monitors and controls their security, minimizing the residual business risk and ensuring that security continues to fulfill corporate, customer and legal requirements.      

To provide assurance to customers, partners, employees, and suppliers that data is safe, many organizations are interested in becoming ISO 27001 certified. ISO 27001 is a standard defining the guidelines for the ISMS and ISO 27002 provides a set of 133 best practice security controls necessary to establish, implement, operate, monitor, review, maintain and improve a documented ISMS.

The SMP Solution & Methodology

Security Management Partners’ ISO 27001 Consulting services provide guidance and support to organizations looking to achieve certification. SMP’s ISO Consulting Services are customizable to the specific needs of each client.  From trusted advisor to full service project leader, SMP can offer the services that meet your requirements.  Our ISO expertise extends to all aspects of the process and includes:

• Preparing and/or reviewing your ISMS plan
• Performing a Gap Analysis
• Management of the implementation process
• Internal Auditing
• Preparing for the Management review meeting
• Preparing the SoA
• Selecting and scheduling the Registrar
• Attending Registrar audits
• Preparing for Re-certifications