peak logo

DK

NO

ISO/IEC-27001

Every organization has to consider how it handles information security. A task every organization should take a stand on is how information security is handled and embedded, in relation to the current threat assessment. As technologies and forms of co-operation are changed, the complexity increases, and a standardized approach can therefore be the solution. With application of a security standard such as ISO/IEC-27001 you can thus visualize and systematize your approach to information security and shorten your implementation timeline.  

ISO/IEC-27001 is an international management system for information security. The system lays down a list of requirements for how your organization assesses risks, documents processes and distributes tasks, roles and responsibilities. If the chosen controls are conformed to, it is moreover possible to achieve a certification of the organization. With our ISO/IEC-27001 course you standardize the work from establishment and implementation to operation and ongoing updating as well as an audit of the security standard. In this way, you are able to handle security-related challenges and threats in a still changeable IT-environment in accordance with an international standard.  

What are the benefits? 

ISO/IEC-27001 is the obligatory security standard within all public authorities in Denmark. However, both public and private, large and small organizations can employ the standard and achieve benefits such as: 

  • Improved return and anchoring on investments in IT security  
  • Security of compliance in relation to laws, requirements and agreements with authorities and business partners 
  • Vastly broader overview and division of responsibilities on security procedures 
  • Increased effectiveness and operational reliability with documented processes  
  • Improved insurance conditions 

erik petersen

Erik Pedersen

Client Director

Tel: +45 24942919

Our approach

Our work with ISO/IEC-27001 very much addresses the elements of risk evaluation, identification and analysis of risks and the risk management. Our approach can be briefly described as a detailed Plan-Do-Check-Act course, that contains a range of activities and deliverables: 

Project plan 

With a basis in Plan-Do-Check-Act a project plan for the implementation is made. 

Key deliverables 

We identify the key deliverables during the course, and construct templates and checklists for developing them.  

Benefits realization  

Together we draw a benefits-map, in order to chart the necessary behavioural changes to create benefits and the needed organizational anchoring.    

Requirement lists 

We lay down lists of requirements based on ISO/IEC-27001 eventually supplemented by requirements of other standards such as SANS-CIS., NIST etc.  

 

Risk assessment 

We chart and assess the different risks of the actual ISO implementation along with the application of the standard going forward – Furthermore, mitigating actions are identified in the entire course. 

Results

Bank improved cyber security with new IT-concept 
Government agency operational risk strategy with ISO 27001
Transport business ensured GDPR governance with ISO 27001 

Are you implementing ISO 27001?

When Peak helps organizations implement ISO/IEC-2700, we consider the organization’s situation, experience and maturity. In this way, we ensure that you get the full benefits from the collaboration. 

plandocheck

Plan, execute, check and react

With our Plan-Do-Check-Act course we ensure that all elements of the project are both prioritized and communicated to stakeholders and employees. 

Related services

It service management
Sourcing and contract management 
Business Service Management

Related courses

SAFe® 5.1 Lean Portfolio Management
Project management
Prince2 - kursus kategori
PRINCE2
MSP Programme Management

Feel free to reach out:

info@peakconsulting.dk | Tlf: +45 3526 2880

Din tilmelding er registreret

Tak for din tilmelding, der nu er modtaget. Der er en bekræftelse på vej til din indbakke. 

Hvis du har problemer eller spørgsmål til tilmelding, så skriv til ms@peakconsulting.dk

Tilmelding til: Morgenseminar om den agile stat

Udfyld formularen og tilmeld dig seminaret. Ved tilmelding accepterer du vores persondatapolitik og handelsbetingelser

Bemærk: Vi forbeholder os retten til at afvise din tilmelding, hvis vi vurderer, at din profil ikke matcher målgruppen for seminaret. 

Hvis du har problemer eller spørgsmål til tilmelding, så skriv til ms@peakconsulting.dk

Tilmelding til SAFe Forum 16. marts 2022

Udfyld formularen og tilmeld dig SAFe forum 16. marts 2022

Ved tilmelding accepterer du vores persondatapolitik og handelsbetingelser

Tilmelding til Årets projektdag 19. maj 2022

Bemærk: Konferencen er udsolgt, men du kan skrive dig på venteliste og få besked, hvis der er afbud. 

Ved tilmelding accepterer du vores persondatapolitik og handelsbetingelser

Hvis du har problemer eller spørgsmål til tilmelding, så skriv til ms@peakconsulting.dk