ISO & Other Standards
Our proven route to the various other standards is very similar to the more popular ISO Standards: Gap Analysis – Training/Remedial Action – Verification/Certification
From the smallest to the largest business, PCI/DSS Compliance is critical for anyone who accepts Credit Cards on or offline. Businesses handling Credit Card Data are prime targets for data thieves. It’s your job to protect cardholder data at the point-of-sale. If cardholder data is stolen – and it’s your fault – you could incur fines, penalties, even termination of the right to accept payment cards & most likely – lose customers!
ISO 20000 IT Service Management
An International IT standard that allows companies to demonstrate excellence and prove best practice in IT management. It can be seen as similar to the ISO 9001 Quality Standard but rather than Generic – specific & applicable to IT Services only.
Cyber Essentials is a government-backed, industry supported scheme to help organisations protect themselves against common cyber attacks. Similar to ISO 27001 but a little more prescriptive & not as universally recognised. It comes in 2 formats: Cyber Essentials which is Self Assessment against the requirements, carrying less credability for obvious reasons – or Cyber Essentials Plus, where your systems must be independently tested & verified against the requirements. Recognised almost solely in Gov Sectors, we would reccomend only for companies operating in or trying to enter the Gov or Public Sectors
ISO 22301 Business Continuity Management Standard
Specifies the requirements for a management system to protect against, reduce the likelihood of, and ensure your business recovers from disruptive incidents. Includes extreme weather, fire, flood, natural disaster, theft, IT outage, staff illness, terrorist attacks etc. It forces a systematic approach to ensuring a Robust Business Continuity Plan is put in place ahead of time, to ensure your business doesn’t come to a standstill – or nasty end.