Show me desktop version

Go it alone

Because you have to create each document yourself, and try to figure out every step yourself, this is definitely the most labor- and time-intensive method. Lots of organizations try this first, but only a very few actually manage to become certified. Oftentimes, after several months (or even years) have gone by, these organizations find that they wasted countless hours and large sums of money without any results.

 

SHOW ME THE MATRIX

Bring in a consultant

It’s true that a consultant can lead you through the whole process, but after that comes a huge bill. But, if money isn’t a concern and you want to go this route, be sure and use our ISO 27001 / ISO 22301 consultant checklist to fully vet the consultant you select (consultants’ knowledge and experience can vary greatly).

 

SHOW ME THE MATRIX

Do it yourself with professional guidance

Do it yourself with professional guidance – This is the way 27001Academy does things. We give you everything you need: documentation templates, professional advice, online tutorials, and expert guidance. This way, you can get your ISO 27001 and/or ISO 22301 certification.

 

SHOW ME THE MATRIX

Examine Your Options

In this step, you’ll look at each of your implementation choices. You basically have three ways for your business to become certified in ISO 27001 or ISO 22301:

  • Go it alone – Because you have to create each document yourself, and try to figure out every step yourself, this is definitely the most labor- and time-intensive method. Lots of organizations try this first, but only a very few actually manage to become certified. Oftentimes, after several months (or even years) have gone by, these organizations find that they wasted countless hours and large sums of money without any results.
  • Bring in a consultant – It’s true that a consultant can lead you through the whole process, but after that comes a huge bill. But, if money isn’t a concern and you want to go this route, be sure and use our ISO 27001 / ISO 22301 consultant checklist to fully vet the consultant you select(consultants’ knowledge and experience can vary greatly).
  • Do it yourself with professional guidance – This is the way 27001Academy does things. We give you everything you need: documentation templates, professional advice, online tutorials, and expert guidance. This way, you can get your ISO 27001 and/or ISO 22301 certification without a consultant.

Free ISO 27001 / ISO 22301 Consultation

We have ISO 27001 & ISO 22301 consultants ready to talk to you about where your organization is and what actions to take next. We know how complicated things can get, and we’re here to provide guidance you can rely on.

Find more information and support in our ISO 27001 & ISO 22301 Blog

Can ISO 27001 help your organization in a DDoS attack?

In a connected world where hundreds of transactions are made every minute, every second your systems are down or inaccessible may represent a significant impact on your organizations’ business. And, while prevention of infrastructure failures is an immediate and obvious concern for decision makers, a more subtle and insidious threat ...Read more

How can ISO 27001 help you comply with SOX section 404

A number of high-profile corporate and accounting scandals collapsed several big players like Enron and WorldCom, and played havoc on global investment market. In the wake of these scandals, U.S. SOX law was introduced to restore public confidence of financial information released by public organizations. The laws required new levels ...Read more

Organizational Resilience – Positioning Against ISO 22301-Based Business Continuity

Approaches and methods to successfully and sustainably run businesses are being rapidly developed. Recently, the term of Organizational Resilience was interpreted as being the new expression for the term Business Continuity. According to industry sources, based on recent ISO standardization work (ISO 22316:2017), Organizational Resilience is an all-encompassing concept that ...Read more

European 2017 Revision of ISO/IEC 27001: What has changed?

Released at the beginning of April 2017 by BSI (the British Standards Institution), the standard BS EN ISO/IEC 27001:2017 is a corrigendum over previous standard BS ISO/IEC 27001:2013. It has raised some concern among organizations with Information Security Management Systems certified against ISO 27001, the leading ISO standard for information ...Read more

How to perform an ISO 27001 second-party audit of an outsourced supplier

To focus on their core business, many organizations rely on outsourced suppliers to perform support processes. While this approach may bring benefits like costs savings, and access to expert knowledge and state-of-the-art technology, it can also involve risks related to loss of control over how these processes are performed and ...Read more

How can ISO 27001 and ISO 22301 help with critical infrastructure protection?

The European Council Directive 2008/114/EC of December 8, 2008, is a European Directive for the identification and designation of critical European infrastructures and the assessment of the need to improve their protection. It states: Critical infrastructure means an asset, system or part thereof … which is essential for the maintenance ...Read more

OUR CLIENTS

OUR PARTNERS

  • Exemplar Global (formerly RABQSA) is leading international authority in certification of training providers.
  • ITIL® is a registered trade mark of AXELOS Limited. Used under licence of AXELOS Limited. All rights reserved.
  • DNV GL Business Assurance is one of the leading providers of accredited management systems certification.
Request callback
Request callback

Or call us directly

International calls
+1 (646) 759 9933