top of page

ISO 27001

The ISO/IEC 27001 standard provides companies of any size and from all sectors of activity with guidance for establishing, implementing, maintaining and continually improving an information security management system.

Industry
All
Estimate time to certify
3-12 Months

What We Do

  • Gap Analysis - AKRUP. will carry out a gap analysis of your current system. On the basis of document review and interviews, you will find out where your company stands and what gaps need to be closed to achieve ISO 27001 Certification.

​

  • Implementation - AKRUP. consultants will assist you in drafting all required ISO 27001 documentation, including amending your current ISMS.​ ​We provide full project management services as a standard to make implementation as streamlined as possible.

​

  • Audit - From helping you to choose the most suitable ISO 27001 audit provider, to presenting your company during the audit, our consultants will be by your side throughout the whole audit process.​​

  • Post Audit - We also offer support in maintenance of the ISMS and follow-up assessments.

  • ISMS Maintenance - We will maintain your ISMS on an annual basis to meet ISO 27001 requirements.

What Is ISO 27001?

  • ISO/IEC 27001 – International Standard for Information Security – It is a globally recognized standard that provides a framework for establishing, implementing, maintaining, and continuously improving an Information Security Management System (ISMS).

​

  • Focuses on Confidentiality, Integrity, and Availability (CIA) – The standard ensures that organisations protect sensitive data from unauthorized access, maintain data accuracy, and ensure availability when needed.

​

  • Risk-Based Approach – Organisations must identify, assess, and manage information security risks through a structured risk management process.

  • Annex A – 93 Controls in 4 Domains – The standard includes security controls covering organisational, people, physical, and technological aspects, helping companies address various security threats.

​

  • Certification Process – Organizations undergo an independent audit by an accredited certification body to verify compliance with ISO 27001 requirements and obtain certification.

​

  • Applicable to All Industries – While widely used in IT, finance, and healthcare, ISO 27001 applies to any organisation handling sensitive information, improving trust and regulatory compliance.

​

Balck and white Akrup logo.png
bottom of page