ISO 27001 UKAS Certification
Sole Proprietor or Multinational, finding a route to ISO 27001 Certification is a minefield – beware of anybody telling you it doesn’t need to be “UKAS” – government warning
At QMUK we
re-invent the wheel
Keeping Certification Simple
With a Pragmatic approach our consultants help you implement a well-proven & robust Information Security Mgt System (ISMS).
Our goal is to rationalize both your system & ongoing maintenance
Our process to achieving guaranteed UKAS ISO 27001 Certification is well trodden, simple, robust & as follows:
Initial meeting to gain knowledge of your organization
We will explain the whole process, remove the mystery & hopefully any apprehension as well, assessing your Information Assets & business while instructing on Risk Assessment of these Assets.
Draft ISO 27001 Information Security Management System (ISMS)
Your consultant will produce & email an ISO 27001 documented system specific to you for review.
Management System Completion
During the second visit, your consultant will fully explain the system to you, advice & train on the next steps – all documentation supplied.
Assistance in implementation
For larger organizations, there will be visits to coordinate & maintain momentum towards ISO 27001 UKAS Certification. For all companies, there will be continuous & free support by email & telephone.
Internal Audit of system & training of auditor/s
We will audit all aspects of your company to ensure your system is working for you & your people are effectively working within it. At this time someone from your company will be trained to conduct your future internal audits, leaving you self-sufficient with no need to pay for our services again! The audit can be seen as a “dummy run” prior to the formal UKAS ISO 27001 Assessment.
Finalise Information Security Management System
Should our audit identify areas for improvement we will revise your Mgt System as required & assist in the application for your Ext Assessment by a UKAS Approved Cert Body.
Representation/Support during UKAS Assessment
The UKAS approved body will not be there to interrogate you; they will merely be looking for evidence that you are compliant with your own system & the ISO 27001 standard itself. This process can be daunting to those experiencing it for the first time – fear of the unknown. Your consultant will use their experience to allay those fears & help you point your assessor in the direction of the evidence they are seeking. ISO 27001 Programme duration is normally 3-9 months and is dependent on the size & complexity of your business/organization. We have fast-tracked to 30 days, but that is exceptional. Multiple ISO Certifications can easily be achieved simultaneously; rationalizing documentation content & minimizing consultation fees. Maintenance: We offer a full range of services if required & including, Internal Auditing, System Revision, and Training, etc.