Gerne beraten wir Sie telefonisch:

+49 (0) 7223 – 808479-0

Tel: +49 (0) 7223 – 808479-0

CYBER SECURITY
Security consulting
for corporate and cyber security

ISO 27001 certification

Cyber security as a cause for business growth and success.

With an ISO 27001 certification you show your (potential) customers that you are a reliable business partner. They show that information security is taken seriously. So in times of multiple security risks, you clearly differentiate yourself from your competitors.

For certification and necessary requirements, contact us here.

We help you to develop an information security management system (ISMS) and its certification to ISO 27001.

Our services are modular and can – depending on your needs – address specific aspects of your ISMS or cover the development of a holistic ISMS.

In both cases, as ISO / IEC 27001 certified auditors, we are your service provider on the way to certification!

Do you have questions about ISO 27001?

We are here for you! Competent, service-oriented and in your area!

Focus topics

Risk and structural analyzes
Development of appropriate protection goals
Modeling the information network

Internal audits according to ISO 27001
Development of document structures
Documentation / verification of your ISMS documentation

Preparation of an audit

If you want to prove to your customers and business partners that your company complies with internationally recognized information security standards, there is hardly any way around certification. We help you, as experts and service providers, to achieve the conformity to the desired standard – „ISO 27001“ or „ISO 27001 on the basis of IT Grundschutz“ and thus pave the way for successful auditing.

Our consultants and auditors will take you step by step to the certificate

Step 1: Initial audit and GAP analysis

Identify and document the activities and existing practices in your organization that already meet normative requirements. This is usually the case more often than one might expect. After all, the standard is not entirely unfamiliar with practice either. In areas where there are normative discrepancies, we help you develop a verification program to create appropriate quality manuals based on your business systems and processes.

Step 2: Control Audits – Implementation and Control

For a successful auditing, it is essential that your employees not only know the defined processes, but also their own responsibilities and tasks, but actually live in everyday life. Based on the developed manual, we create an individual training program for your company and carry out this training in your home. Through a number of control audits, as required, we determine the progress of your ISMS project and update both the action catalog and the pending lists.

Step 3: Preliminary audit – the dress rehearsal for your ISMS

Once your information security as per ISO / IEC 27001 is demonstrably implemented in your organization, your ISMS is potentially ready for certification. Now, as so often in life, self-image is not necessarily congruent with the external image – an external auditor could rate your ISMS quite differently than representatives of your organization. So that you do not experience unpleasant surprises during a certification audit, our auditors carry out another final internal audit to prepare for the certification audit. Almost the dress rehearsal.

Step 4: The certification audit

There should be no surprises for you here. Together with our consultants and auditors, you have done everything that is required for a certifiable ISMS. The certification audit itself therefore only represents a review of your ISMS, which our auditors have already made conscientiously in advance. Our consultants and auditors also provide advice in the certification audit. Together we want to successfully bring your ISMS project to its destination!

Step 5: Issue of the certificate according to ISO / IEC 27001

After a successful certification audit, issuing the certificate itself is usually only a matter of form.

Take the first step now: Determine how close you are to certification!

The first step is often the hardest. What is usually associated with the tasks that seem complex, large and confusing. How big is the effort to introduce and certify an ISMS? Which capacities need to be maintained? How long it will take? What will it cost? All these questions are easy to answer – after a review by our auditors. Create clarity for yourself and your organization – get expertise in terms of ISMS in the house. Book now a GAP analysis according to ISO / IEC 27001 by our auditors.

Gap analysis according to ISO / IEC 27001 for companies up to 30 employees

Is your safety management ready for certification according to ISO / IEC 27001?

Determine how far away you are from possible certification. Our auditors examine your operational practice of information security management with regard to conformity to the international standard ISO / IEC 27001.

The result is a target / actual comparison (gap analysis) with meaningful recommendations for action

Tangible results for you:

  • A comprehensive, individual report with all findings and conclusions A detailed, goal-oriented and practicable catalog of measures
  • A time scale with a picture of the measures in a meaningful, suitable for your company, sequence A comprehensive workshop (1 day) to clarify the audit results and consequences for you on site
  • Process gap analysis according to ISO / IEC 27001

Object of investigation – our auditors will pay attention to this:

  • Your requirements for information security (guidelines and guidelines)
  • Existence and Scope: Are there any necessary documents?
  • Level of institutionalization: Are these requirements known to your employees?
  • Are you respected in everyday life?
  • Are you up to date?
  • Are they complete?
  • The security management Is it complete?
  • Are all measures adequately described?
  • Is it reasonable and purposeful?
  • Are all measures designed correctly in terms of the goals?
  • Are the described measures also implemented in practice?
  • The Management Commitment Carrying the ISMS through the management
  • Definition and responsibility for the ISMS
  • The process of continuous improvement
  • Management Review
  • Internal Auditing
  • Tracking the pending trends

The offers are valid for companies with up to 30 employees. It includes travel expenses and applies only to locations in Germany, Austria and Switzerland.

Are you interested in our services? Then contact us! How to contact us as soon as possible!

Gap analysis according to ISO / IEC 27001 for companies up to 70 employees

Is your safety management ready for certification according to ISO / IEC 27001?

Determine how far away you are from possible certification. Our auditors examine your operational practice of information security management with regard to conformity to the international standard ISO / IEC 27001.

The result is a target / actual comparison (gap analysis) with meaningful recommendations for action

Tangible results for you:

  • A comprehensive, individual report with all findings and conclusions
  • A detailed, goal-oriented and practicable catalog of measures
  • A time scale with a picture of the measures in a meaningful, suitable for your company, sequence
  • A comprehensive workshop (1 day) to clarify the audit results and consequences for you on site
  • Process gap analysis according to ISO / IEC 27001

Object of investigation – our auditors will pay attention to this:

  • Your requirements for information security (guidelines and guidelines)
  • Existence and Scope: Are there any necessary documents?
  • Level of institutionalization: Are these requirements known to your employees?
  • Are you respected in everyday life?
  • Are you up to date?
  • Are they complete?
  • The security management Is it complete?
  • Are all measures adequately described?
  • Is it reasonable and purposeful?
  • Are all measures designed correctly in terms of the goals?
  • Are the described measures also implemented in practice?
  • The Management Commitment Carrying the ISMS through the management
  • Definition and responsibility for the ISMS
  • The process of continuous improvement
  • Management Review
  • Internal Auditing
  • Tracking the pending trends

These offers are valid for companies with up to 70 employees. It includes travel expenses and applies only to locations in Germany, Austria and Switzerland.

Are you interested in our services? Then contact us! How to contact us as soon as possible!

Gap analysis according to ISO / IEC 27001 for companies up to 250 employees

Is your safety management ready for certification according to ISO / IEC 27001?

Determine how far away you are from possible certification. Our auditors examine your operational practice of information security management with regard to conformity to the international standard ISO / IEC 27001.

The result is a target / actual comparison (gap analysis) with meaningful recommendations for action

Tangible results for you:

  • A comprehensive, individual report with all findings and conclusions
  • A detailed, goal-oriented and practicable catalog of measures
  • A time scale with a picture of the measures in a meaningful, suitable for your company, sequence
  • A comprehensive workshop (1 day) to clarify the audit results and consequences for you on site

Object of investigation – our auditors will pay attention to this:

  • Your requirements for information security (guidelines and guidelines)
  • Existence and Scope: Are there any necessary documents?
  • Level of institutionalization: Are these requirements known to your employees?
  • Are you respected in everyday life?
  • Are you up to date?
  • Are they complete?
  • The security management Is it complete?
  • Are all measures adequately described?
  • Is it reasonable and purposeful?
  • Are all measures designed correctly in terms of the goals?
  • Are the described measures also implemented in practice?
  • The Management Commitment Carrying the ISMS through the management
  • Definition and responsibility for the ISMS
  • The process of continuous improvemen
  • Management Revie
  • Internal Auditing
  • Tracking the pending trends

This offer is valid for companies with up to 250 employees. It includes travel expenses and applies only to locations in Germany, Austria and Switzerland.

Are you interested in our services? Then contact us! We will contact you as soon as possible!

your contact details

Details

When would you like to be contacted?

Preferred date*

Preferred period*

+ Add an alternative appointment

Alternatives Datum

Alternativer Zeitraum

*Fields marked with this symbol are mandatory

I have read the privacy policy and accept it.

Erfahrungen & Bewertungen zu Concepture Gruppe GmbH

Get 30 minutes 
consultation 
absolutely free of charge