ISO 27001 Consulting Services | ISO 27001 Consultants

What is ISO/IEC 27001:2013 - Information Security?

ISO/IEC 27001 is an internationally recognised standard for Information Security.

Information security management gives you the freedom to grow, innovate and broaden your customer-base in the knowledge that all your confidential information will remain that way.

What is our Consulting Processs?

With over 20 years Quality & ISO 9001 consulting experience working with many organizations & industries, we have developed The Kelmac Group® 9-Step Roadmap to Going Beyond Certification and invite you to select the below icons to learn more about each step and learn about how we can add enormous business value to your processes and how you operate as a business.

Step 1 Foundation

This module focuses on the organization's top leadership team and planning. The aim is to ensure the Top Leadership team can actively lead, participate and manage the management system from the outset.

Step 2 Process/Risk Management

This module focuses on the the organization's business and management system processes and product/process risk assessments.  The aim is to  build and/or enhance the organization's process and to identify the related product and process risks, risk mitigation and controls.

Step 3 Objective/Process Alignment

This module focuses on the design of the organization's internal controls including alignment between goals and process controls. The aim is to ensure the business internal controls meets the needs of the organization.

Step 4 Human Resource System

This module focuses on the design of the organization's structure, people, culture/behavior, and competency framework. The aim is to ensure the organization structure, culture, behaviors and HR system supports the organization management system.

Step 5 Information Security Health Assessment & Controls

This module focuses on the health assessment and design and development of the organization information Security Controls based upon ISO/IEC 27002.  The aim is to ensure the information security controls protects the organization's commercially sensitive information assets.

Step 6 Document Management System

This module focuses on the design and development of the organization document management system. The aim is to the document management system is effective.

Step 7 Implement The Management System

This module focuses on implementation of the organization management system. The aim is to ensure the management system is flawlessly implemented and expected benefits are fully realized.

Step 8 Check The Management System

This module focuses on verification of the organization management system. The aim is to ensure the organization's verification system provides stakeholders with the assurance and insight to improve performance, if required.

Step 9 Certification Audit

This module involves coaching/mentoring during the initial certification audit process. The aim is to ensure the initial certification outcome is successful.

How Long Does It Take?

One of the most common questions with this type of project that needs to be answered is ‘how long does it take’. There are various considerations but the main ones include: is there a hard client/contract deadline? Are there available resources to support the project internally? Plus, the exact scope of work required and any potential complexity are key considerations. Many organizations will want to aim for an efficient turnaround but it is common that the amount of work required can be underestimated. The below gives an example of average timelines from start to certification based on the size of the organization – these are guidelines only. Each project varies & in all cases, is based on the client needs.

  • The average for a small business would be between 6 – 9 months. In general, the shorter the timeline, the higher the intensity of the project. A key consideration is whether there are available resources who can commit to the agreed workload required for the preferred project duration.

    Ideal for Small Business*

  • This is the average project duration in the experience of Kelmac Group®. A 9 month project has moderate intensity but generally doesn’t overload a client, particularly where resources who will be involved on the project internally will already have other priorities and responsibilities.

    Ideal for Medium Business*

  • This is a conservative project duration for small to medium enterprises but one that is common on larger, more complex projects. Certain projects may even extend up to 18 months.

    Ideal for Large Business*

*each client project varies, the above are project averages to serve as a guideline only


What Resources Do We Need?


Small Business

Each and every business is different and it depends on the availability of resources and whether or not they have the ‘bandwidth’ to meet the internal demands of the project. An average project would involve 2-3 internal resources sharing responsibilities as part of the project.

Medium Enterprise

There are similarities between what challenges resources face whether you are a small, medium or large enterprise. An average project would involve 3-5 internal resources sharing responsibilities as part of the project.

Large Enterprise

Each and every business is different and it depends on the availability of resources and whether or not they have the ‘bandwidth’ to meet the internal demands of the project. An average project would involve 2-3 internal resources sharing responsibilities as part of the project.

How can Kelmac Group & ISO 27001 Certification help your business succeed?

  • THE ONE SYSTEM MODEL APPROACH

    The unique Kelmac Group® One System Model enhances organizational compliance, effectiveness and efficiency based on including all the business processes in addition to ISO 27001 requirements & processes to create a business-focused Information Security Management System with ISO 27001 Certification inside.

    Many organizations are interested in ISO 27001 Certification – we are right fit for organizations looking to achieve certification but also looking for a system that will be bespoke to the needs of their business, include all their business processes and add continuous value beyond that which is typically associated with ISO 27001 Certification.

Why Implement this standard? What are the benefits?

Bringing Value To Your Business

Learn about how a Kelmac Group® Management System
"goes beyond certification"
and how we add tangible value to your business

 

  • Certification guarantee
  • Operational Controls
  • Liability
  • Regulatory Compliance
  • Security Risk
  • Zevas Communications

    Kelmac Group assisted Zevas with the adoption of a consistent and best practice approach via their information security controls and practices within a relatively young organization. This will help Zevas Communications provide a competitive, innovative and cost effective level of customer contact and communication service to their clients.

  • LuLu International Exchange

    Kelmac Group helped LuLu International Exchange achieve a positive business change as the organization transitioned from a business funded organization to a sustainable and profitable organization. The project also included the successful achievement of ISO 9001:2015 Certification.

  • Fortune 500 Food and Beverage Company

    We worked in partnership with the Food and Beverage company [FBO] team and employed a number of initiatives to improve the firm’s competitiveness, operational controls and operational efficiency.

  • Zevas Communications Case Study

    Learn about how ISO 27001 Certification will help Zevas Communications provide a competitive, innovative and cost effective level of customer contact and communication service to their clients.

  • LuLu International Exchange Case Study

    Learn about how this organization transitioned from a business funded organization to a sustainable and profitable organization including the successful achievement of ISO 9001:2015 Certification.
  • Fortune 500 Food and Beverage Company Case Study

    Learn about how ISO can improve a firm’s competitiveness, operational controls and operational efficiency through process excellence.

  • Zevas Communications Case Study

    Learn about how ISO 27001 Certification will help Zevas Communications provide a competitive, innovative and cost effective level of customer contact and communication service to their clients.

  • LuLu International Exchange Case Study

    Learn about how this organization transitioned from a business funded organization to a sustainable and profitable organization including the successful achievement of ISO 9001:2015 Certification.
  • Fortune 500 Food and Beverage Company Case Study

    Learn about how ISO can improve a firm’s competitiveness, operational controls and operational efficiency through process excellence.

Request a Call Back

Our team is here to help,
call us on +44 203 432 4187

Would you like us to call you back to discuss it?

Blog Posts

  • A Quality Week for Kelmac Group®

    A Quality Week for Kelmac Group®Over the last few days we have ran several Quality Courses. Kelmac Group® would like to thank everyone who attend the IRCA certified ISO 9001:2015Internal Auditor Training Course and IRCA Certified ISO 9001 Lead Aud

    Read More
  • Hugely Successful ISO 13485:2016 Lead Auditor Certification Training

    Kelmac Group ® recently ran a hugely successful ISO13485:2016 Lead Auditor Certification Training. This was a full class that took place in a large room and had two Instructors, therefore everyone got the level of education and information our cus

    Read More
  • IRCA Certified ISO 9001 Lead Auditor Training Course

    Kelmac Group® would like to take this opportunity to thank all Learners who attended the IRCA Certified ISO 9001 Lead Auditor Training Course. There was a great mix of industries such as Construction, Manufacturing and Engineering. This course is no

    Read More
  • Lets Connect

    Questions? Call us on +353.61.491224


     
  • Download Corporate Brochure

    Download Corporate Brochure