Get your Information Security Management System on Track
Shearwater Solutions has developed a methodological yet flexible approach that has helped several organisations achieve compliance and prepare for certification. Our tried and true approach ensures that you successfully achieve your compliance goals on time, and on budget.

For Government Organisations
We help government organisations integrate the Protective Security Policy Framework (PSPF) and Information Security Manual (ISM) into a maintainable Information Security Management System (ISMS) based on ISO/IEC:27001.

For Private Enterprise
We will conduct a gap analysis against ISO 27001 and identify the remediation needed based on your organisation’s risk profile. We will also conduct internal audits to assert compliance and prepare all the documentation and proof needed for certification.
Scope of the Service
Scope Definition
Designed for organisations starting out on their compliance journey, a Scope Definition activity helps stakeholders and project managers to understand what systems and processes they should include within the scope of the ISO 27001 Information Security Management System (ISMS).
Gap Analysis
A Gap Analysis activity is suitable for organisations that require a detailed understanding of where they are in terms of their Information Security Management System (ISMS). It also provides them with a roadmap to certification.
Internal Audit
An Internal Audit is a requirement of the ISO 27001 standard and is suitable for organisations that have an operating ISMS and are either planning to certify or have certified previously. An audit covers some or all the clauses and controls in scope.
Compliance Preparation Services
The Compliance Preparation Services are custom engagements designed specifically to help organisations fill the gaps highlighted in an ISO 27001 Gap Analysis.
Benefits of Compliance & Certification
Improve your Security Posture
Compliance provides a security framework that helps to secure your critical data and to lessen the likelihood of being compromised.
Protect Business Requirements
International Standards can be a strategic tool to help organisations tackle challenges and compete on a global stage.
Maintain Trust and Reputation
Meet the business requirements of partners and customers, and answer their tough questions on storage and handling of their data.
Avoid Downtime
Implementing the framework helps your organisation avoid costly downtime and damage to reputation that may be caused by a breach.
