IT Consulting Case Studies

Information Security Management certification - ISO/IEC 27001:2005 - for a datacentre and business continuity company

The issue

To provide a high level of assurance to its clients, our client was striving to become ISO 27001 certified for information security management. The client has requested PwC to perform the complete lifecycle of this standard certification process including the trial, certification and surveillance audits for the whole organisation, composed of multiple resilience datacentres.

Our approach

Conduct a trial audit preceding the formal certification audit in order to assess the essential elements of the ISO 27000 providing guidance on implementation and compliance
Conduct the certification audit, divided into the documentation and implementation phases to review the Information Security Management System (ISMS) and gather evidences of its implementation
Conduct multiple surveillance audits according to the certification lifetime of 3 years, to ensure continuous ISO compliance of the ISMS

The outcome

The complete audit process led to the ISO/IEC 27001:2005 certification and ensured its continuous compliance.

IT Consulting

Download our free iPhone/iPad App nowClick here

Contacts

Serge Bertoldo IT Consulting Leader: Tel: +352 49 48 48 2061

Philippe Pierre Partner: Tel: +352 49 48 48 4313

Jean-Philippe Ricard Partner: Tel: +352 49 48 48 5719

Of further interest

Stay up-to-dateIT Consulting RSS
News FeedSubscribe here