Did you know...
Having the right controls in place to comply with ISO 27001 can also help your organisation save significant time and resources in complying with other requirements.
Given card data is classed as personal data, one set of testing procedures can help ensure you have the evidence required for compliance across different standards such as GDPR and ISO 27001.
Our insight helps organisations see where they can gain competitive advantage by developing an approach which can quickly achieve compliance across multiple standards.
Our wider information security credentials, including Payment Card Industry Data Security Standard (PCI DSS) expertise, helps businesses gain maximum impact from the certification process.
Rodney Julius, CISO, Interpath Advisory
Gemserv offers two services that you should consider when you think about your ISO 27001 project.
- Cyber Threat Intelligence
The latest version of ISO 27001 requires organisations to have access to actionable cyber threat intelligence information. Gemserv’s cyber threat intelligence platform provides a curated feed of information tailored to your organisation to help you recognise and address the emerging threats that are of most significance to you.
- ISO 27701
ISO 27701 is the sister standard to ISO 27001. It extends your information security management system to include your privacy information management system, so it reassures your partners, suppliers and customers that you protect personal data to the standards they expect. Organisations that have both ISO 27001 and ISO 27701 are likely to find it easier to provide acceptable answers when asked to complete due diligence questionnaires.