Certification to ISO/IEC 27001 Information Security Management

What is information security? Keep your information confidential with a certified ISO/IEC 27001 system and show that you have information security risks under control. Compliance with world-class standards can help you win customer trust and new business opportunities.

How to get certified to ISO/IEC 27001

We make the ISO 27001 certification process simple. ISO 27001 certification: After we have received your application we appoint a client manager who will guide and your business through the following steps.

Gap analysis
This is an optional pre-assessment service where we take a closer look at your existing information security management system and compare it with ISO/IEC 27001 requirements. This helps identify areas that need more work before we carry out a formal assessment, saving you time and money.

Formal assessment
This happens in two stages. First we review your organisation’s preparedness for assessment by checking if the necessary ISO/IEC 27001 procedures and controls have been developed. We will share the details of our findings with you so that if we find gaps, you can close them. If all the requirements are in place, we will then assess the implementation of the procedures and controls within your organisation to make sure that they are working effectively as required for the ISO 9001 certification.

Certification and beyond
When you have passed the formal assessment you will receive an ISO/IEC 27001 certificate, which is valid for three years. Your client manager will stay in touch during this time, paying you regular visits to make sure your system doesn’t just remain compliant, but that it continually improves.

Find out more about our certification services >

Client case study – Fredrickson International

Fredrickson International is a leading debt collection agency. Having implemented ISO/IEC 27001, it now has greater security awareness across the organisation. Certification has significantly reduced the time it takes to bid for contracts and has provided the market with confidence of its information security practices.

Read the case study in full (PDF) >

See all ISO/IEC 27001 case studies >

Train with us and certify to ISO/IEC 27001

We use accelerated learning techniques to make sure you fully understand the ISO/IEC 27001 standard and answer your question of 'what is information security?'. And we put your learning into context with a blend of classroom teaching, workshops and interactive sessions.

See all ISO/IEC 27001 training courses

Why choose BSI?

We pioneered standards more than 100 years ago and today we’re the market leader. We help over 86,000 organizations ranging from top global brands to small ambitious businesses in 193 countries to gain an edge over their competition. As one of the few organizations that understands standards from start to end, we don’t only assess how well you’re meeting them, we create new standards from scratch and train teams globally to use them and perform better. Our knowledge can transform your organization.

Find out more about BSI >