ISO 27001 standard implementation

What is ISO 27001?

LST ISO/IEC 27001:2022 specifies the requirements for an information security management system to enable an organisation to assess risks and put in place appropriate controls to protect the confidentiality, integrity, and availability of information through a risk management process.

Organisations that apply this standard can obtain ISO/IEC 27001 certification if they are audited by an accredited certification body. The certificate demonstrates that the company follows best practices in information security as well as provides a competitive advantage.

How do we implement ISO 27001?

  • We implement an information security management system based on the ISO 27001 security standard and develop the necessary policies, procedures, and other documents (e.g. secure programming, remote access, user management, etc.).
  • We develop Information Security Management System (ISMS) roles, functions, and responsibilities.
  • Inventory digital assets and their owners.
  • We carry out a risk assessment and provide the results and an action plan. We also prepare a risk assessment methodology.
  • We prepare a methodology for the IT internal audit process.
  • We assess your organisation’s information security controls against ISO 27002.

Benefits for your organisation

Competitive advantage
Competitive advantage
Ensures regulatory compliance
Ensures regulatory compliance
Improved information security and governance
Improved information security and governance
Increased trust among stakeholders
Increased trust among stakeholders
Icon
Paulius Daukšas
Cybersecurity consultant

For more information, please contact
Email: pd@nrdcs.lt
Tel.: +370 680 18 058

Let's get in touch

Other services

01

CyberSOC 24/7 managed security

02

CSIRT or SOC establishment and modernisation

03

Audits and assessments

04

CISO advisory services

05

Cybersecurity capacity building

06

Technology solutions

07

Training courses