ISO 27001

Overview

Information security management is one of the most critical issues faced by companies today. We are surrounded by risks and see news about companies getting compromised almost on a daily basis. ISO 27001 is an international standard for information security management. It guides companies through the process of identifying risks and putting controls to place to manage the risks down to an acceptable level.

ISO 27001 compliance is applicable to any company wanting to have a strong information security posture. Companies doing business abroad or with international customers may be required to pursue compliance.

Practical Assurance helps companies understand the ROI and duration of an implementation, the documentation involved, and the level of control required the achieve compliance.

Learn More about ISO 27001

Have Questions About ISO 27001?

Let us help you find out what compliance framework is best for your business.


SOC 1 / SSAE 18

Learn how SOC 1 reports can help businesses with services that impact financial reporting meet the needs of customers and partners.

SOC 2

Learn how SOC 2 reports differ from SOC 1 and are best-suited for companies providing information services such as SaaS and cloud companies.


HIPAA / HITECH

Learn how HIPAA no longer impacts just healthcare companies. If your company stores any health data (even on behalf of a customer), you're liable.

PCI / DSS

Learn how to classify your business based on the number of transactions performed on an annual basis. Any business accepting credit cards must demonstrate compliance.


ISO 27001 / 27002

Learn how ISO 27001 is the first step in developing an information security management program that will help your business build trust internationally.