Home About Gamma Tour our Web Site Events White Papers Services Visitors' Book How to contact us
        IMS Internal Control ISMS Smart Cards Common Criteria
                 

Now that you realise that ISO/IEC 27001 certification is important for your business, perhaps even crucial, what do you do next?  You can already imagine:

  • being able to increase your customers' confidence in your ability to safeguard the security of their information
  • being able to spot errors and fix them before your customers notice
  • being able to protect yourself from fraud and error.

Your response - choose from any of the Gamma  Information Security Management Services

Join us and become an ISO/IEC 27001 certified company.

The Gamma ISMS services consists of complementary modules to help your organisation achieve ISO/IEC 27001. You may not need them all - your choice will depend on how far along the road to ISO/IEC 27001 you are already.

  • Fast Track ISMS: We will assist you to build a certifiable ISMS from scratch quickly.  We have achieved our target of 4-6 months for a number of clients, and have trained them how to rollout ISMS to other parts of their organisations. Click here to find out more.Productised Intelectual Property-led Service. Effectively, this provides you with the option to buy these services off-the-shelf as a standard package, rather than in the form of the more traditional consultancy service. On these pages you will find a link to the appropriate brochure which provides a specification for the PIPS.
  • Dry Run Audit: We will perform a dry run audit of your existing ISMS to identify potential problems that may jeopardize actual ISO/IEC 27001 certification. Click here to find out more.
We performed a dry run audit for Vodafone Telecommerce  in October 2000.  This is a picture showing the award of their certificate from BSI on 22 March 2001.  We were only asked to commission the formal audit from BSI on 1 February, so just 48 calendar days to award - that's pretty fast! Our  dry run audits are performed in exactly the same way as a certification audit.
  • Security Policy: We will assist you to develop your security policy and establish the scope of your ISMS. Click here to find out more.
  • Risk Assessment/Risk Treatment: We will assist you to perform a risk assessment and develop your risk treatment plans, helping you to classify your assets, identify risk areas and select safeguards. Click here to find out more.
  • Statement of Applicability: We will assist you to draw up your Statement of Applicability, selecting the ISO/IEC 27001 safeguards that are relevant to your business, justifying the de-selection of those that are not and identifying any additional safeguards that you need. We will help you ensure that the deployment of the chosen safeguards can be audited and that appropriate records can be generated. Click here to find out more.
We have the Statement of Applicability down to a very fine art now. We can generate the SOA within in few days. The security policy is even quicker. Get a free template when you attend a Gamma training course. 
  • Documentation: We will assist you to establish an appropriate document framework, document control procedures and draft the security and ISMS procedures.
We also have the document server concept down to a fine art, and ISMS assessors love it.  The server provides a tool for management, a reference for staff, a way to train new staff and a boon to an auditor.
  • Audit Preparation: We will help you to establish and instigate a management plan, including a schedule of internal audits, security effectiveness reviews and ISMS reviews. 
  • Organising Certification: We will help you to produce a certification plan, complete the Certification Body questionnaires and commission the Certification Body best suited to your needs.  We will assist you throughout the certification process.
  • Training: We will train your staff in the requirements of ISO/IEC 27001 and how to establish, operate and audit an ISMS. Click here to find out more.
Photograph of the opening of the first BS7799 course held in South Korea This can be a very effective way to learn about the standard and how to apply it. You will learn lots of our tricks of the trade. Click the picture for further details.
  • Post Certification: We will help you to maintain your ISMS, help you to prepare for and support during and after the surveillance visits.
  • Marketing: We will help you to get the most out your ISO/IEC 27001 certification from a marketing perspective.

Simply choose the elements that best suit your organisation's needs. If you are not sure what you need, we will be happy to help.

We know how to enhance your ISMS to support:

  • Added value services with a high confidentiality component
  • The UK Manual of Protective Security
  • Marketing.

We know how to integrate your ISMS with your QMS and the rest of your internal control system.

The ISMS will provide valuable feedback on two levels. There are checks which ensure that what management wants to happen is happening and that what actually happens meets with the approval of your customers.

Your next move

... simply contact David Brewer. Why not do it now!
             
             
             
 
Gamma is an ISO/IEC 27001:2005 and BS EN ISO 9001: 2000 registered company, certified for the provision of information security consultancy.  BSI certificate numbers IS 85916 and FS  30710.  Please send comments to webmaster@gammassl.co.uk or complete our Visitors'Book. Gamma Secure Systems, Diamond House, Frimley Road, Camberley, Surrey, GU15 2PS, UK Tel: +44 1276 702500 - Fax: +44 1276 692903Copyright © Gamma Secure Systems Limited 1998-2008
 
 
Page last updated: 16 March, 2008