IT Governance launches global ISO 27001:2013 Transition service as certification to ISO 2700:2005 officially ends
ELY, UK, November 5, 2014 /EINPresswire.com/ -- IT Governance, the global provider of ISO27001 expertise, has launched a new ISO27001:2013 Transition Consultancy service that provides organisations with the necessary support, guidance and advice they need in order to successfully transition to ISO 27001:2013.
Following the statement by UK accreditation body UKAS that certification bodies should no longer accept any further applications for certification to ISO 27001:2005 from October 2014, ISO27001-compliant companies should start transitioning their information security management systems (ISMSs) now.
The International Accreditation Forum (IAF) has set a deadline to certification bodies of two years from the date of publication of the Standard for conformity with ISO/IEC 27001:2013.
Alan Calder, founder and executive chairman of IT Governance, says, “Starting the transitioning process to ISO 27001:2013 now should be a no-brainer. Companies with an existing ISO27001-compliant ISMS may find the process complicated and time-consuming if they are transitioning on their own, but with some expert help a successful transition will take significantly less time and save them money.”
ISO 27001:2013 has been written using the new high-level structure common to all new management systems standards in order to make integration with other management systems more straightforward.
One of the major changes to the Standard is associated with the risk assessment methodology. ISO 27001:2013 is no longer prescriptive about the methodology, meaning that companies with asset-based risk assessments no longer need to follow an asset-based approach. The control selection process has changed, offering the benefit of greater flexibility, and the controls in Annex A have been modified. The Standard now also puts a greater emphasis on setting objectives, and monitoring performance and metrics.
In response to the UKAS announcement and in view of the remaining transition period, Calder advises ISO27001 practitioners not to postpone any longer if their certification bodies have already successfully transitioned to the new version of ISO27001.
“The sooner that organisations complete the transition to ISO 27001:2013, the better the position they’ll be in when their next audit is due. They will not only have time to get used to the changes and address any additional issues, but will also benefit from the improvements in the new version.”
At an affordable one-off fee of £3,450 (excluding any consultant expenses incurred for face-to-face meetings, and VAT) the ISO27001 Transition Consultancy service is available either as an online or face-to-face consultancy service. This service is applicable to companies with up to 500 employees. Companies anywhere in the world can now benefit from IT Governance’s ISO27001 expertise.
To find out more about this service, visit: www.itgovernance.co.uk/shop/p-1675.aspx.
- Ends -
NOTES TO EDITORS:
IT Governance Ltd is the single-source provider for books, tools, training and consultancy for IT governance, risk management and compliance. The company is a leading authority on cyber security and IT governance for business and the public sector. IT Governance is ‘non-geek’, approaching IT issues from a non-technology background and talking to management in its own language. The company’s customer base spans Europe, the Americas, the Middle East, South Africa and Asia. More information is available at: www.itgovernance.co.uk.
Following the statement by UK accreditation body UKAS that certification bodies should no longer accept any further applications for certification to ISO 27001:2005 from October 2014, ISO27001-compliant companies should start transitioning their information security management systems (ISMSs) now.
The International Accreditation Forum (IAF) has set a deadline to certification bodies of two years from the date of publication of the Standard for conformity with ISO/IEC 27001:2013.
Alan Calder, founder and executive chairman of IT Governance, says, “Starting the transitioning process to ISO 27001:2013 now should be a no-brainer. Companies with an existing ISO27001-compliant ISMS may find the process complicated and time-consuming if they are transitioning on their own, but with some expert help a successful transition will take significantly less time and save them money.”
ISO 27001:2013 has been written using the new high-level structure common to all new management systems standards in order to make integration with other management systems more straightforward.
One of the major changes to the Standard is associated with the risk assessment methodology. ISO 27001:2013 is no longer prescriptive about the methodology, meaning that companies with asset-based risk assessments no longer need to follow an asset-based approach. The control selection process has changed, offering the benefit of greater flexibility, and the controls in Annex A have been modified. The Standard now also puts a greater emphasis on setting objectives, and monitoring performance and metrics.
In response to the UKAS announcement and in view of the remaining transition period, Calder advises ISO27001 practitioners not to postpone any longer if their certification bodies have already successfully transitioned to the new version of ISO27001.
“The sooner that organisations complete the transition to ISO 27001:2013, the better the position they’ll be in when their next audit is due. They will not only have time to get used to the changes and address any additional issues, but will also benefit from the improvements in the new version.”
At an affordable one-off fee of £3,450 (excluding any consultant expenses incurred for face-to-face meetings, and VAT) the ISO27001 Transition Consultancy service is available either as an online or face-to-face consultancy service. This service is applicable to companies with up to 500 employees. Companies anywhere in the world can now benefit from IT Governance’s ISO27001 expertise.
To find out more about this service, visit: www.itgovernance.co.uk/shop/p-1675.aspx.
- Ends -
NOTES TO EDITORS:
IT Governance Ltd is the single-source provider for books, tools, training and consultancy for IT governance, risk management and compliance. The company is a leading authority on cyber security and IT governance for business and the public sector. IT Governance is ‘non-geek’, approaching IT issues from a non-technology background and talking to management in its own language. The company’s customer base spans Europe, the Americas, the Middle East, South Africa and Asia. More information is available at: www.itgovernance.co.uk.
Desi Aleksandrova
IT Governance
+44 (0) 845 070 1750
email us here
Legal Disclaimer:
EIN Presswire provides this news content "as is" without warranty of any kind. We do not accept any responsibility or liability for the accuracy, content, images, videos, licenses, completeness, legality, or reliability of the information contained in this article. If you have any complaints or copyright issues related to this article, kindly contact the author above.