Facebook Twitter Linked In
Panacea InfoSec

ISO 27001 Certification

The ISO 27001 (ISO/IEC 27001:2005) International Standard is the world's most renowned information security standard. It has been developed by a global panel of information security experts and is considered the benchmark standard for information security.

Over 8,000 organisations worldwide have already achieved certification to ISO 27001 and the numbers are rising by over 1,000 a year.

The ISO 27001 standard provides best practice guidance on developing an Information Security Management System (ISMS). An ISMS is a risk based management system for establishing, implementing, operating, monitoring, reviewing, maintaining and improving information security within an organisation.
Blueprint has advised a variety of Indian businesses on the development and implementation of their ISMS. These clients have ranged from small businesses to international enterprises, so we can readily tailor an ISMS to your needs. We have guided our clients through the often confusing maze of ISO 27001 certification to ensure that they acquire not only the certificate but an efficient, functional and maintainable ISMS that adds value to the business in its own right.
ISO 27001 has been designed for organisations of all types and sizes. It is just as relevant in a 10 person organisation as a 10,000 person organisation. The scope of an organisation’s ISO 27001 certification can include the entire organisation, a single business process, a single technical system or a single physical location.
The ISO/IEC 27001 standard is closely aligned with other management system standards, including:

Organisations that are already aligned to one of these standards (or are working towards that goal) are already well on the way towards ISO 27001 compliance and certification. We simply modify the existing management system to satisfy the requirements of ISO 27001.

Information Security Management System (ISMS)

The ISO 27001 Process

The ISO 27001 process approach is cyclical and based on the same Plan - Do - Check - Act principal common to the ISO's other management system standards.

ISO 27001 adopts a process approach for establishing, implementing, operating, monitoring, reviewing, maintaining and improving an organisation's Information Security Management System. The ISO 27001 process approach emphasises the importance of:

Contact us