You Ask. We answer.

Answers to common ISO 27001 Questions

What is ISO 27001?
In the digital age, where data breaches are as common as coffee breaks, information security has never been more important. Enter ISO 27001, an international standard that outlines the requirements for establishing, implementing, maintaining, and continually improving an Information Security Management System (ISMS).

Read more


Is ISO 27001 mandatory in the UK?
ISO 27001, the international standard for information security management, is not universally mandatory for compliance in the United Kingdom. 
Organisations can voluntarily adopt ISO 27001 to enhance their information security practices. It provides a structured framework for managing risks related to information and data security.

However, here are some key points to consider:

Read more


Is ISO 27001 Certification Right for Your Business?

Is ISO 27001 certification the right path for your SME and is it expensive? It can be expensive and time consuming to implement and maintain ISO 27001. It's definitely a strategic decision and like everything else, you get out what you put in. Let’s explore the nuances and considerations and how you can start working towards accreditation without spending money on consultants.

Read more


How long does ISO 27001 take to implement?

It usually between 3 - 12 months depending on the scope and complexity of your ISMS.

The duration for implementing ISO 27001 certification varies based on the size of your organisation, the scope, complexity of your processes and the data you handle.

Read more

What are the benefits of ISO 27001?

It's easier to list how ISO 27001 wouldn't benefit your organisation!
ISO 27001 (the standard for implementing and managing an Information Security Management System (ISMS) provides a robust framework for managing and protecting all business operations information within your determined scope. Here are some key benefits of ISO 27001 compliance and certification:

Read more