908-875-7466 | frank@fyconsulting.com | HOME

ISO 27001 IT Security Management Certification

We can help you achieve ISO 27001 certification whether your IT system resides locally on your sever or on the cloud. We can also be your outsourced independent internal auditor.

ISO 27001:2022

The digital landscape has changed drastically. New practices such as remote working and using your own device, have become common and most companies have moved their information management systems to the cloud. Consequently, the ISO Organization has updated the ISO 27001 Security Management and ISO 27002 Control of Security Standards to reflect these new practices. These updates enable your company to ensure business continuity and address increased security risks. Upgrading your ISMS to meet the requirements of these new standards will increase the protection of our information.

Changes from ISO 27001:2013 to 27001:2022

• Numbering has been revised to align with ISO uniform approach
• Requirement to define processes needed for implementing the Information Security Management System
• Requirement to communicate organizational roles relevant to information security within in the organization
• Addition of clause 6.3
• Clause 7.4 has been enhanced to ensure that the methods of communication are determined
• New requirements to establish criteria for operational processes and their control

Changes to Annex A

• Number of Controls have been reduced from 114 to 93
• The structure has been consolidated to include Organizational, People, Physical and Technological instead of 14 in the 27001:2013 revision
• To be in harmony with the terminology used within the digital security, five attributes including Cyber Security Concept, Security Domains, Type of Control, Operational capabilities, and Information security properties, have been added

ISO 20000 IT Service Management Certification

We can also help you achieve ISO 20000 IT Service Management Certification.

ISO 20000 IT Service Management standard sets the requirements for an information technology service management system (ITSMS). It is designed to assist organizations deliver more effective IT services to those within the organization and to customers.

Certification Maintenance

If you already have your certification but are resource limited, we can offer you a certification maintenance program. We will periodically visit your facility to conduct the required internal audits, facilitate the management reviews, and follow-up on any corrective actions to make sure that you successfully pass your surveillance and recertification audits.

 

For additional information, contact Frank Yazhari at frank@fyconsulting.com or call 908-875-7466 today.