Step 1.
DESKTOP REVIEW
Audit your business’s ISMS documentation and establish processes against the ISO27001 Clauses and Controls requirements. This will identify areas of weakness, and options for controls that will strengthen your organisational processes. Once ISMS is deemed to be “functioning” we commence Stage 2
Step 2.
AUDIT ISMS EFFECTIVENESS
Evaluation of the implementation and effectiveness of the ISMS assessed over a period of several months to ensure ongoing compliance. Once certified, regular (typically scheduled annually) surveillance audits need to be performed by the certifying body to ensure the ISMS is being actively maintained and embedded into your organisation.