Achieving and maintaining ISO 27001 compliance is a continuous process that requires buy-in from internal stakeholders and investment on several fronts. That’s why selecting the right organisation to lead your compliance efforts is crucial.
Shearwater Solutions has developed a methodological yet flexible approach that has helped
several organisations achieve compliance and prepare for certification. Our tried and true approach ensures
that you successfully achieve your compliance goals on time, and on budget.
We help government organisations integrate the Protective Security
Policy Framework (PSPF) and Information Security Manual (ISM) into
a maintainable Information Security Management System (ISMS)
based on ISO/IEC:27001.
We will conduct a gap analysis against ISO 27001 and identify the remediation needed based on your organisation’s risk profile. We will also conduct internal audits to assert compliance and prepare all the documentation and proof needed for certification.
Designed for organisations starting out on their compliance journey, a Scope Definition activity helps stakeholders and project managers to understand what systems and processes they should include within the scope of the ISO 27001 Information Security Management System (ISMS).
An Internal Audit is a requirement of the ISO 27001 standard and is suitable for organisations that have an operating ISMS and are either planning to certify or have certified previously. An audit covers some or all the clauses and controls in scope.
A Gap Analysis activity is suitable for organisations that require a detailed understanding of where they are in terms of their Information Security Management System (ISMS). It also provides them with a roadmap to certification.
The Compliance Preparation Services are custom engagements designed specifically to help organisations fill the gaps highlighted in an ISO 27001 Gap Analysis.
Compliance provides a security framework that helps to secure your critical data and to lessen the likelihood of being compromised.
International Standards can be a strategic tool to help organisations tackle challenges and compete on a global stage.
Meet the business requirements of partners and customers, and answer their tough questions on storage and handling of their data.
Implementing the framework helps your organisation avoid costly downtime and damage to reputation that may be caused by a breach.
“Security is an on-going process, and as an IT Security Advisor, I am comfortable with having a peer company like Shearwater to rely upon. If I have an issue or need advice I am
confident that Shearwater can provide a pragmatic and cost-effective solution.”
ITSA, Federal Government Agency