Ivan Spiteri
Director of Technology Advisory & Assurance
The implementation of an information security management system (ISMS) based on the international standard ISO 27001 clearly demonstrates all interested parties, such as clients and regulatory bodies, that your organisation takes information security seriously and does as much as possible to reduce identified risks to a minimum level and manages them effectively.
Professional assistance from a qualified ISO 27001 consultant will ensure that the process is conducted to the highest standard of best practice, while saving significantly on both time and cost. That is because a specialist consultant has the experience and expertise to address the ISMS issues and all its additional complexities, with no false starts or unnecessary steps, thereby saving you both time and money.
BDO is ready to support you
BDO Malta can assist you both in the establishment of an information security management system and in ISO 27001 auditing existing systems.
We can support companies with the following services:
- Conduct a Gap Assessment with the ISO 27001 standard
- Provision of training and awareness sessions
- Creation and development of necessary documentation
- Development and support of an information security risk assessment
- Assistance with the implementation of the required Annex A controls
- Carry out an internal audit by a certified Lead Auditor
- Support in selecting an accredited certification body