ISO / IEC 27001
Maor's ISO/IEC 27001 services deliver comprehensive support for your organization's information security needs, from specialized training to turnkey implementation and ongoing management, ensuring robust security practices and ISO/IEC 27001 certification compliance.
Maor’s ISO/IEC 27001 consultancy services can work with your organisation to assure conformance/compliance to an evidence-based, international, best practice standard for managing your information security - thereby securing your information and the information of all your stakeholders. In the modern age, managing information securely is a critical, non-negotiable expectation of every organization. Maor Cybersecurity can reinforce and evolve your organisation’s capability to achieve such information security through conformance/compliance with the ISO/IEC 27001 Information Security Management System standard - resulting in achieving and maintaining/retaining certification if desired.
Maor’s ISO/IEC 27001 consultancy services include:
- Full suite of ISO/IEC 27001 practical, hands-on training (including training on the use of companion documentation 27002, 27003, 27004, 27005, 27007).
- “Turnkey” ISO/IEC 27001 implementation consultancy service from benefits analysis, through gap analysis, project implementation, training through to certification (including the provision of conformant documentation and processes “localized” for your organization).
- Provision of ISO/IEC 27001 “ISMS Management-as-a-Service” to assure your achievement and retention of certification.
- A fully functioning, independent, internal audit service (a mandatory requirement of ISO/IEC 27001) - including focused, pre-certification, preparation auditing.
- Availability of a custom-designed and developed, secure, cloud-based ISO/IEC 27001 ISMS application to support efficient and effective ISMS management.
Implementation
Design, development and implementation of ISO/IEC 27001:2022 -conformant information security management system (leveraging ISO/IEC 27001:2022 best practice guides/codes of practice 27002, 27003, 27004, 27005 and 27007).
Gap Analysis
Provision of ISO/IEC 27001 gap analysis resulting in critical insight into your organisation’s current conformance/compliance status to ISO/IEC 27001 - and how to bridge any gaps. Essentially, ISO/IEC 27001 gap analysis provides specific awareness of what needs to be done to attain ISO/IEC 27001 certification with the added bonus of also understanding your organisation's security position/posture.
INTERNAL Audit Services
Provision of fully ISO/IEC 27001-conformant audit/auditor services (single/recurring audits and/or a “turnkey” internal audit programme) which critically contributes to the mandatory performance evaluation and continual improvement requirements of ISO/IEC 27001.
Our “turnkey” internal audit programme can also include foundational auditor competency development through coaching and mentoring. Additionally, Maor can also provide a secure hosting option of its custom-designed audit programme cloud-based application to further underpin effective and efficient audit management.
Employee ISO/IEC 27001-focused information security training and education
Design, development, delivery, evaluation and continual improvement of ISO/IEC 27001 education and training to meet the dual objectives of assuring suitable, adequate and relevant ISO/IEC 27001 awareness and competency across all ISMS roles, responsibilities and authorities. All our education and training provides suitable and adequate documented evidence of participation and associated competence achievement.
Our ISO/IEC 27001 education and training includes:
· General employee education and awareness.
· Practical implementation including critical information security risk assessment and treatment).
· Auditor development and mentoring.
· Risk management (including general risk management).
· Top (Senior) management workshops (ISO/IEC 27001 for Top Management).
· ISMS and information security performance evaluation.
· Custom-designed organizational-focused programmes.
Maor ISO/IEC 27001 education and training services takes a collaborative, co-design/co-development approach and is facilitated by internationally experienced practitioners (training and ISO/IEC 27001).
