ISO 27001 for Beginners
The ISO 27001 Information Security Management standard is a way of ensuring you'e managing your risks effectively. Read on for an introduction to the standard.ISO 27001 for Beginners
British Assessment Bureau is the UK’s number one choice for ISO 27001 Certification.
Since 1969 we have provided our clients with an award-winning service based on confidence and trust.
Our UKAS accreditation is a key part of the confidence we can guarantee our clients. Our accredited ISO 27001 certificates all come with the coveted ‘Crown & Tick’ mark, underlining the security that only comes from Government-backed certification.
STEP 1 – PREPARATION
Your dedicated Assessor will get in touch to set the scene and get you thinking about how best to get prepared so you can complete certification in record time and start reaping the rewards.
STEP 2 – FIRST ASSESSMENT There is no pressure for the first ‘Stage 1 Assessment’; you will be surprised what you already have in place prior to us visiting. Whilst we’re not permitted to provide consultancy – so that we maintain impartiality – the unique template toolkit we have developed makes certification achievable with no previous experience.
STEP 3 – SECOND ASSESSMENT When you are ready, your Assessor will visit you again for a ‘Stage 2 Assessment’, you’ll be told the result on the day. Once our compliance team have reviewed your report, we will confirm your certification. You will then be sent your certificate, alongside those all-important logos. Our marketing team is always on hand to help you spread the news about your success.
STEP 4 – ANNUAL ASSESSMENT ISO 27001 is so respected because of its requirement for continuous enhancement, this involves a commitment to being assessed every 12-months. We will contact you to arrange a quotation in plenty of time for you to decide. For those with current certification, we’re pleased to offer our Transfer Switching service.
WHAT WILL IT COST?
The cost of certification is ultimately determined by factors such as the organisation’s total size, the sector it’s in, and the number of locations they operate from. Regardless of your size, we always provide a fixed fee with no hidden costs to worry about. To make budgeting your ISO requirements a little easier, we offer a monthly payment plan as standard to all registered companies, charities and organisations*. If this option is taken an initial payment of only 20% is required with the balance payable over 10 monthly direct debit payments. Alternatively, if you wish to pay the full fee up front a 10% discount will be applied.
*Credit check is not required subject to confirmation of company registration, minimum 6 months trading history and self-certification of solvency. This option is not available to sole traders due to consumer regulations.
To enable you to immediately reap the rewards, we will provide you with a Letter of Commitment once you start the process. You will meet your Assessor who, together with your Account Manager, will be with you throughout the entire process. With our free toolkits and online training, our approach has allowed 1,000s to achieve hassle-free certification in just a few months.
“More and more tenders are requiring certification to ISO 27001 and for certain contracts it is becoming a necessity. ISO 27001 is already improving the way our business operates and helped in attracting new clients and business as a direct result of certification. We expect ISO 27001 to open more doors to us in the future.”Read More Download
"The entire certification journey to implement ISO 27001 was simple and easy to navigate. We were able to move seamlessly through each stage. Overall, implementing ISO 27001 has been a positive experience that has benefited our business."Read More Download
Yes, and you don’t have to wait until renewal date, you can transfer at any time. Please be aware that you will be required to start the process from the beginning, ensuring you are meeting UKAS’ standards.
Providing that you have an annual surveillance audit, your certificate will last for 3 years from the start date. If you do not have an annual audit your certificate will not be valid.
No, but you’ll need a designated representative or coordinator who’ll take responsibility in your organisation.
Don’t worry. Our ongoing commitment to you is to make sure you don’t forget it! We’ll be keeping in touch with you to make sure that everything is going well after certification. Then we’ll be in touch 3 months before your audit is due to arrange a visit date.
We are allowed to provide:
- Generic templates from our extensive toolkit.
- Training – either in-house or in our regular courses. We have a list of available dates and venues throughout the UK right here.
- Advice and guidance from our Assessors throughout the entire process.
- A Gap Analysis service designed to show you what needs to be done to get you to become an ISO certified company.
This is dependent on the structure of the organisation. Sometimes you’ll only need to protect the aspect of your business which protects client data.
To help us prepare the best quotation for you, please complete the form below. We'll get back to you as soon as possible; but if you need immediate assistance, please call 0800 404 7007.