What is ISO 27001 and what does it mean to be certified?

Updated: Jan 27

ISO/IEC 27001 is the leading international standard that focuses on information security. It helps organisations to protect their information by adopting an Information Security Management System (ISMS).

ISO 27001 requires a three-stage external audit process conducted prior to certification:

Stage 1 is a review of the current ISMS held by the organisation. Threats, vulnerabilities, and impacts are examined to design and implement a suite of information security controls.

Stage 2 is a detailed audit of the ISMS against the requirements specified in ISO/IEC 27001. This includes implementing a suite of information security controls and also risk treatment.

Stage 3 is an ongoing review. The ISMS manager works to ensure that this suite of controls continues to meet the organisation's information security needs. Re-assessment audits are conducted at least annually, but are usually done more frequently.

Clenergy EV is ISO/IEC 27001 certified. This means you can be sure that we are serious about information security, and that we have implemented the correct procedures and protocols to ensure that valuable information is safeguarded to a high standard.

Read more about this ISO on our certifier's website: What Is ISO 27001 Certification? | QMS International (qmsuk.com)

29 views0 comments