ISO/IEC 27001 for small businesses

Information is a valuable asset to small and large businesses alike, and ISO/IEC 27001 brings equal benefits to organizations of all sizes. Information security management gives small businesses the confidence to meet expectations – from legal to new business opportunities – giving you a solid and secure base to grow from.


Shaping ISO/IEC 27001 for SMEs

Small businesses that implement ISO/IEC 27001 can achieve the same levels of success as larger companies. We know that you may have tighter budgets and less time to manage the information security risks you face. And we know that those risks are as unique as the information you want to secure. That’s why we provide packages that can be customized to include only the services and products you need – removing the unnecessary cost and complexity of achieving ISO/IEC 27001. We can help you secure all your information, regardless of format, to minimize security breaches and avoid fines.

You’ll see how ISO/IEC 27001 keeps you compliant with world-class information security standards as well as legislation. And you’ll quickly discover that keeping your information secure not only safeguards your reputation, it also helps you compete with bigger brands.


Training courses to get you started in ISO/IEC 27001

ISO/IEC 27001 Information Security Management can be adapted to organizations of all sizes and sectors. And our training is designed for all levels of experience.

ISO/IEC 27001 Information Security Management System Implementation

 

Contact us for a customized quote

    • This course provides an overview of the latest techniques and examines issues surrounding information security management systems (ISMS)
    • The course discusses the requirements for implementing a formal management system as specified in ISO/IEC 27001:2005 and outlines information security issues including methods of control and countermeasures for threats
View details for ISO/IEC 27001 Information Security Management System Implementation

How to get certified to ISO/IEC 20000-1

  1. ISO/IEC 2000-1 Service Management system certification should be hassle-free. You’ll be appointed a BSI Client Manager, a trusted expert with relevant industry experience to your business, who can guide you through the process.

    The steps to ISO/IEC 20000-1 certification:

    1. ISO/IEC 20000-1 gap analysis

    An optional service which takes place before your assessment visits. We’ll take a closer look at your existing information security management system and compare it with the requirements of the ISO/IEC 20000-1 standard. It’s a really cost effective way to check if there are any areas you need to work on before we carry out a formal assessment.

    2. Formal assessment

    A two-stage process. First your BSI Client Manager will review your organization’s readiness for assessment by checking if the necessary ISO/IEC 20000-1 procedures and controls have been developed in your organization. We will share the details of our findings with you so that if we find gaps, you can close them. Next, if all the requirements are in place, we’ll assess the implementation of the procedures and controls within your organization to make sure that they are working effectively as required for certification of ISO/IEC 20000-1. 

    3. Certification and beyond

    When you achieve certification you’ll receive your BSI ISO/IEC 20000-1 certificate which is valid for three years. Your BSI Client Manager will visit you regularly to make sure your system doesn’t just remain compliant, but it continually improves and adds value to your organization.