ISO 27001 Certification

With its extensive experience in compliance with IS security standards such as PCI DSS, PA DSS and ISO 27001, DATAPROTECT has since its creation focused on assisting in the ISO 27001 standard certification, combining meticulousness in the implementation and flexibility in the adaptation to the customer’s context. Today, DATAPROTECT’s consultants truly have a demonstrated experience and the adequate tools allowing them to carry out their ISO 27001 standard compliance projects.

Our approach

The approach offered by DATAPROTECT for ISO 27001 certification is a progressive approach, which allows the consolidation of achievements and to obtain quick results.

Our assets

Assisting our customers in the implementation of the ISO 27001 standard was designed as an added-value offering through:

- The carrying out of the mission by expert consultants:
  • Trained consultants that are certified in: CISA, PCI QSA, PA QSA, CISSP, ISO 27001 Lead Auditor, ISO 27001 Lead Implementer,
  • Qualified consultants: demonstrated experience on similar projects
- The benefit of in-depth preliminary work on the ISO 27001 approaches:
  • Support in the reading and the application of the standard (synoptic, entry, exit, etc.)
  • Expertise and specific tools for risk analysis
  • Specification work of the SoA indicators and of the ISO 27001 dashboards
- Critical reading of the standard:
  • The standard is largely redundant and requires a specific reading
  • The 27001 approach is not a guarantee of suitable quality but rather of continuous improvement
  • The 27001 approach contributes to regulatory requirements (e.g. PCI-DSS) subject to adjustments of the approach
- A globally recognized accreditation as a PCI QSA and PA QSA
- An implementation methodology which guarantees the completion of the mission within the deadlines, in line with the important milestones of the management cycle and of the implementation of the IS

Our references

DATAPROTECT has carried out organizational audit of security missions in compliance with the ISO 27001 standard but also of ISMS implementation in accordance with the requirements of the ISO 27001 standard for several organizations. We can namely cite: