ISO 27001 Compliance & Consulting Professionals

FLANK provides ISO 27001 and 27002 consulting services for organizations seeking to establish an "Information Security Management System" (ISMS) as defined by BS ISO/IEC 27001:2013 "Information technology - Security techniques - Information Security management Systems - Requirements", simply known to all as ISO 27001. ISO 27001, and the ISO 27002 code of practices for information security management, have both become very well-known and widely adopted by organizations all throughout the globe.

Both ISO 27001 and 27002 compliment each other in that ISO 27001 provides the guidance for an ISMS, while ISO 27002 gives specific details (i.e., "security control clauses") that help support the design, development, and implementation of an actual ISMS.

Specifically, ISO 27002:2013 is an in-depth publication that provides a wealth of information relating to security management within an organization. Additionally, the publication (which can be purchased online through a number of providers) has fourtenn (14) "security control clauses", each with supporting information accompany them. It's a great document for learning about and immersing oneself into the world of information security.

Expert ISO 27001 and 27002 Consultants

Organizations having a credible interest in ISO 27001 can actually certify against the management standard. This certification process is facilitated by select entities that have gone through the accreditation process. But before that begins, most organizations would highly benefit from engaging with an actual ISO 27001 auditor to perform preliminary gap analysis, readiness assessments and general consulting services. This is often the most exhaustive and time-consuming process for ultimately gaining ISO 27001 certification, as a tremendous amount of work has to be undertaken before a certified entity can actually conduct the certification process itself. 

Moving Forward with ISO 27001

  • Understanding the specific parameters and overall requirements for what an "Information Security Management System" (ISMS) actually is.
  • Developing an ISMS framework with all supporting policies, procedures, processes and all other applicable initiatives.
  • Actually implementing the ISMS framework throughout an organization, remediating areas as needed, and continuing to effectively monitor and maintain the system.
  • That's where we can assist your organization, as we're expert ISO 27001 consultants that focus solely on the pre-ISO 27001 certification process. We not only help your organization in establishing an ISMS framework, we get you ready for an actual ISO 27001 certification body that is accredited by ANSI-ASQ National Accreditation Board.

Download the ISO 27001/27002:2013 All-in-One Toolkit

Researched and developed by industry leading ISO and InfoSec security experts, our ISO 27001/27002: 2013 All-in-One Toolkit contains hundreds of pages of information security and operational specific policies, procedures, forms, checklists, templates – and more – all mapped directly to the actual ISO 27002: 2013 controls. You’ll receive a complete set of MS Word policy and procedures templates for each of the ISO 27002:2013 security controls, along with supporting policies and procedures that compliments and enhances each respective security control. Building an ISMS has never been easier, thanks to the ISO 27001/27002: 2013 Toolkit from FLANK. View the product data sheet to learn more.

Note: FLANK only provides pre-ISO 27001 services and is not a ISO 27001 certification body. Should you decide to work with us, we have a reference list of qualified certification bodies who can actually perform the ISO 27001 certification process after we've adequately prepared your organization with our pre-certification services. Contact us today to learn more about our ISO 27001 pre-certification, consulting services.