Preparing for ISO27001 Certification Many firms are looking at ways to ease the pain of multiple different questionnaires

coming into the company from multiple partners, customers and vendors asking the same questions in different ways as well as a wide range of different questions related to information security. More and more firms are looking to ISO27001 certification as a way to ease this pain while assuring outside entities that they have met a standard of excellence in their information security program. Treadstone 71 helps you prepare for a successful audit opinion 1. Definitions of principles that auditors adhere to and how these principles
relate to your companys being assessed for 27001 compliance;

2. The application of an Information Security Management System (ISMS)

in the context of ISO 27001:2005 and the relationship of the ISMS, including risk assessment and controls, to information assets belonging to your organization, your customers, and your partners; Proficiencies auditors must learn and certify against; What audit techniques and methodologies auditors must be familiar with; What will make or break your audit; How to prepare for the inevitable day.

3. 4. 5. 6.

Treadstone 71 ISMS, ISO27001/2, and ISO27005 Services cover the areas necessary to prepare you for the ISO27001 audit and subsequent certification. Treadstone 71 teaches what to expect from an auditor and how to pass the certification on a yearly basis. Using a holistic approach to assessing your risk through a standard ISO27001 gap analysis, Treadstone 71 examines people, process, and technology ensuring you start small while preparing for significant expansion in your ISO27001 program. If you are preparing for an assessment, an audit or looking to baseline your environment, you will find no other organization with the experience and expertise than Treadstone 71. We do not go finding independent contractors to short term work. We deliver the solution ourselves. We offer rapid risk assessment approaches as well as in depth assessments that analyze your posture and operational maturity. Are you finding that companies are bombarding you with questionnaires on your security posture? An ISO27001 Certification can significantly alleviate much of this pain, improve your overall security posture and drive efficiencies in your IT environment. Treadstone 71 provided oversight to an ISO27001 certification effort that resulted in a successful audit and the awarding of a multi-million dollar contract as a direct result of the certification.

www.treadstone71.com

info@treadstone71.com

3/21/2011

Treadstone 71 measures risk through practical analysis of your control objectives identifying processes and procedures that are critical to the success of your ISO certification effort. Through the practical application of countermeasures, (we do not use a sledgehammer to push in a tack), Treadstone 71 takes you through the process of scoping, the statement of applicability, assessment, document, training, controls implementation and eventual certification. The process is proven! If you do not have a risk management framework, we can assist in developing one that fits your environment. Updates to policies, and procedures, infosec organizational improvements, asset identification and configuration management through to access control and technology acquisition and continuity management, Treadstone 71 uses the framework of the auditors to prepare you for your certification audit. We cover all ISO27001/2 clauses and domains while educating you on the audit process leaving no stone unturned.

To understand the fundamental concepts and practices of ISO 27001 audits based on ISO 19011.

2 of 3
Treadstone 71

3/21/2011

To understand the application of an Information Security Management System (ISMS) in the context of ISO 27001:2005 and the relationship of the ISMS, including risk assessment and controls, to information assets belonging to the organization, its customers, and its partners. Become proficient in the role of an auditor, in order to: plan, conduct, report, and follow up with an audit in accordance with ISO 19011 and ISO 27001. To develop proficiency in using audit techniques and methodologies and be familiar with current tools. To develop the students' ability to orally present audit results in a coherent, dynamic, and systematic fashion and to write audit reports. To know how to provide direction and guidance to audit team members and prevent and resolve conflicts during an audit.
Call today 1-888-687-8450 or email us at info@treadstone71.com

3 of 3
Treadstone 71