Compliance and handling sensitive data

BSSI offers businesses support for ISO27001 certification at different stages of a project regardless of type.

Initial audit :

Objective : Identify gaps in compliance to the standard :

  • Identification of the perimeter.
  • Analysis of all relevant documentation.
  • Site visits.
  • Interviews and evidence gathering.

Formal analysis of procedures and documentation :

Objective : Review of documentation and evidence gathering for the audit.

  • ISMS Policies
  • Risk analysis
  • Operational procedures
  • Processes

Norms and standards used :

# ISO 27001

# ISO 27002