What’s the best way to implement ISO 27001?

There’s no doubting that it takes time and effort to implement ISO 27001, the international standard for information security, but it’s not as expensive or difficult as you might think. 

If your organisation is serious about staying secure, there’s no reason not to implement the Standard. It demonstrates that you’re doing everything possible to prevent data breaches, improves your working relationships, helps you retain clients and gives you a competitive edge. 

Going it alone 

Most organisations looking to implement ISO 27001 are capable of doing it themselves, but that doesn’t necessarily mean doing it alone. 

IT Governance offers a range of implementation bundles to help you implement the Standard, providing a cost-effective alternative to consultancy. 

We provide a specially formulated combination of bestselling tools and resources to help organisations manage their implementation project from start to finish. 

Find the right solution for you 

Every organisation has different implementation needs and preferences, which is why we offer a range of bundles: 

The Basics 

What it contains: A copy of each key information security standard (ISO 27000, ISO 27001 and ISO 27002) and two implementation guides.   

Who it’s for: Organisations with a solid understanding of information security and the resources to implement ISO 27001. They will have an information security specialist who is able to dedicate their time to the project and create the necessary documentation. 

 

Do It Yourself 

What it contains: A copy of each key information security standard (ISO 27000, ISO 27001 and ISO 27002), two implementation guides, a policies and procedures toolkit, and risk assessment software.   

Who it’sfor: Organisations that understand the essentials of information security but would like more technical help than those favouring the basic package. It’s also suitable for organisations that want to speed up the implementation project, as the policies and procedures toolkit and risk assessment software help with two of the most time-consuming parts of ISO 27001 compliance.   

 

Get A Little Help 

What it contains: A copy of each key information security standard (ISO 27000, ISO 27001 and ISO 27002), two implementation guides, a policies and procedures toolkit, risk assessment software, two qualifications-based training courses and two hours of Live Online consultancy.   

Who it’s for: Organisations that intend to build an ISO 27001-compliant ISMS (information security management system) from the ground up. The bundle contains everything you need to adopt ISO 27001 and maintain compliance. 

 

Get A Lot Of Help 

What it contains: A copy of each key information security standard (ISO 27000, ISO 27001 and ISO 27002), two implementation guides, a policies and procedures toolkit, risk assessment software, two qualifications-based training courses and 40 hours of Live Online consultancy.   

Who it’s for: Organisations that are starting from scratch with ISO 27001. The package contains everything you need to implement the Standard’s requirements, as well as extensive access to a consultant who can talk you through the process and answer any questions.