All organisations have an obligation to be compliant with a number of different statutory, regulatory, contractual and legal frameworks.
From a cyber security perspective, an increasing number of organisations are choosing to be compliant with one or more industry frameworks or standards, to provide confidence to their customers, suppliers and shareholders that they take security of any information held organisation seriously.
Many different frameworks and standards exist, examples are the UK's Cyber Essentials, IASME Governance, ISO's 27001, NIST's Cyber Security Framework & SP800-53, and the Centre of Internet Security's critical security controls.
Dependent on your organisation's requirements, we can work with you to provide an initial assessment and put together an action plan for you to become compliant with your chosen framework, and where ISO 27001 is concerned, any additional requirements to become formally certified with the international standard.
Please contact us for more information regarding your compliance requirements.