Policy and Security Standards

One of the most challenging tasks for an organisation is creating and maintaining security policies and standards. We typically find that internal staff don’t focus on this area for a variety of reasons; however these policies are critical for the successful functioning of your business and to mitigate against key business risks.

We can assist your organisation with the development and implementation of internal policies, such as information security and acceptable use policies, and standards, such as information classification guidelines, technical security controls, change management procedures, and all of the other requirements for an organisation to ensure that risk and information are managed appropriately.

We have particular expertise in ISO 27001 and utilise this framework as a best practice approach to policy and standards development.

We have fulfilled a wide range of requirements in this area from single policy development through to complete “greenfield” site approaches developing all required documentation.