ISO27002 Certification Assessment

Oread Risk & Advisory offers independent, objective reviews of your security program, including technical, physical and administrative security controls based on the ISO security standard.

What Is An ISO 27002 Security Assessment?

An ISO 27002 Security Assessment is an information security assessment measured against the ISO security standard.  It is essentially a gap assessment, where gaps to the standard are identified, measured and reported to you.  ISO 27002 is the security standard used most often globally by security experts when assessing information security programs.

Why Does My Business Need One?

ISO 27002 is an industry accepted, well known security standard, and it is a great fit for most organizations.  There are multiple reasons to assess your security against ISO 27002:

• Regulatory compliance requiring a security assessment (i.e. HIPAA, GLBA, etc.)
• A high-value customer is requiring one or a potential prospect requires one
• You’ve seen breaches on the news and wonder how secure you really are, and what can be mitigated before a breach occurs.

What Can I Expect From My ISO 27002 Assessment?

Our ISO certification assessments include policy review, organization of IS, human resources security, asset management, access control, physical and environmental security, operations security, compliance and communications security among other components. Our roadmap simplifies the process of understanding ISO 27002  and the steps required to get you from where you are to certification. Becoming certified is a process largely made up of things you already know and our ISO 27002 Implementation Roadmap guides you, step by step, from preparation through certification.

Ready to move forward with your ISO 27002 certification assessment? Please contact us today.