Telefoon: 085-0046560
Mail: info@mathison.nl
Bezoekadres: Cypresbaan 7-9
2908 LT Capelle aan den IJssel
ISO 27001
ISO 27001 certification is the internationally recognised standard for information security. With ISO/IEC 27001 certification, organisations demonstrate that they take care to protect their own information and that of their customers.
What is ISO 27001 Certification?
The standard itself has two parts: A central management system consisting of 10 chapters, and an attachment containing a set of management measures or controls is built around a central management system consisting of 10 chapters and 93 measures or controls divided into 4 areas. The two parts together are inseparable: With the design of the management system, organisations are required to indicate which of the 93 controls are considered applicable.
The auditor will then assess the organisation with the aim of determining whether it meets the requirements of the standard and is therefore eligible for certification by the relevant customer.
Contact us
Do you have questions about ISO27001, or have your customers requested an assurance statement? Or would you like to discuss the possibilities for improving the control of your own processes? We would be happy to discuss the possibilities with you.
Advantages of an ISO 27001 certificate for your organisation
Information security has become an integral part of modern business. After all, for virtually all organisations, information is one of the core components of business operations. However, it’s not easy: There are many things to think about, measures to implement and processes to set up and follow.
This is where the first major benefit of ISO 27001 certification comes in. The standard itself provides structure and guidance, and the external review against that standard by the auditor gives you clear feedback on what is going well and where there is room for improvement.
The second major benefit is the trust your certification exudes: Your customers know that you have information security at the center of your organisation and that your measures taken are also well controlled.
What can you expect from an ISO 27001 audit?
An audit tests whether the design of your management system conforms to the requirements of the standard. The auditor will review the policy with the underlying documentation, checking whether it is appropriate for the organisation and meets the requirements of the standard. After that, in discussions with the company, we will look at the implementation, to test whether the daily practice is also in line with your own policy.
In this way the design, existence and functionality are tested, so that you and your customers can trust that your system meets the requirements, fits your organisation and works properly.
