Whether you are looking to achieve ISO27001 certification, or simply following the standards to inform your information risk management programme, the pathway to compliance and/or certification is not a straight-forward one and can require up to two years to achieve.
The process requires a significant degree of buy-in across the organisation and committed resource internally, the extent of which can influence both outcome and timeframe.
One thing that can greatly reduce the burden of the entire process is working with the right external consultants. Our senior team have experience of delivering complete and partial ISO27001 projects across a number of planned phases and steps from the initial preliminary review as to the readiness of the organisation and Risk Assessment, to the creation and execution of a project plan, to process integration compliance monitoring and certification.
One of the team is always willing to discuss any specific requirements or questions you might have so feel free to contact us.
I wish to highlight the outstanding work that your consultant undertook whilst doing the ICT Health Check for the Council.
Particularly notable was the level of technical knowledge displayed by NTA’s consultants, and we were also impressed that they were willing to share this knowledge with the network team.
We have found NTA to be an excellent supplier, offering a very good service at a competitive price. A key differentiator is that they are happy to answer any questions...
I have found NTA to be an approachable knowledgeable partner, and have no hesitation in recommending their services.
The quality of both the initial work and follow-up advice and guidance was excellent, and NTA provided full lifecycle support to the development and delivery of our Online Services portfolio.
On one occasion our third-party did not believe the vulnerability was an issue - having had their software tested by another well-known security testing company - and NTA Monitor were...
NTA Monitor are very supportive, especially regarding general questions about Information Security issues such as hacking and vulnerabilities.