SYSTEMATIC INFORMATION SECURITY

ISO 27001

Valuable information is the gold of the 21st century – and a vulnerable asset. Keep your data safe with an information security management system certified to ISO 27001.

It’s a wise move for the future, too. Because in times of Industry 4.0 and Internet, your data will be susceptible to attacks from inside and outside if you don't protect it with an integral and systematic information security.

  • Information Security
  • Risk Management
  • Preventive Management Approach
  • Business Continuity

The Standard

ISO 27001 provides all the tools you need to implement an integral information security management system (ISMS). It focuses on assessing and controlling risks to information-processing activities. The requirements are deliberately kept general; however, compliance must reflect the organization specific situation. Throughout the standard, information security is described as a significant strategic element that ensures senior management attention. The preventive management system approach is based on the high-level structure required for all ISO management system standards, making the standard easy to integrate into an existing management system.

Your Benefits

  • Recognized proof of strong security risk controls
  • Systematic achievement of confidentiality, availability and information integrity
  • Strengthened security awareness of employees and executives
  • Continual improvement of security and data access controls
  • More business certainty, compliance with relevant requirements
  • Great trust and loyalty from all interested parties 

The Audit

As a qualified, accredited certification body, we fully audit the effectiveness of your management system through the classic DQS certification process. We plan each certification individually, adapting it to your specific circumstances and corporate objectives. A pre-assessment can provide a starting point to identify your strengths and opportunities for improvement. During the certification audit, we come to your facility to verify whether you meet all the requirements of ISO 27001. The DQS certificate serves as proof of compliance. Annual monitoring ensures process stability and minimizes risks. You can recertify after three years.

The Revision

DIN EN ISO/IEC 27001:2017-06 is a version adapted by the CEN (European Committee for Standardization). It combines two corrigenda: Cor 1:2014 and Cor 2:2015. Because the corrections only improve descriptions of requirements, but don’t include any additional requirements, any certificates based on the 2013 version will remain valid. New DQS certificates will also continue to be issued on the basis of ISO/IEC 27001:2013.

Your contact person

Team IDS

Your contact person

Team IDS

isms@dqs.de
Back to overview

Information Security with TISAX

Are you a supplier or service provider for the automotive industry? If so, you can assure customers that you’re keeping their data secure with a single piece of proof: your participation in TISAX Exchange. Once an accredited audit provider has assessed your compliance with the VDA ISA, you’ll be a registered participant and other TISAX participants will recognize your assessment result. 

More

You might also be interested in

ISO 9001

ISO 14001

ISO 50001

ExciPact