ISO27001 Compliance Made Easy

We provide you with the support needed to prepare documentation, train staff and complete the necessary steps to be put forward for an ISO27001 certification audit.

Starting with a full Gap Analysis of your current Information Security stance leading to an action plan for the areas needing improvement.

Along with the Risk Assessment, we help you define the required policies and procedures to prepare for certification.

Support to prepare the documents for a Stage 1 audit by your selected certification body, who will be responsible for assessing your compliance.

Continuing support for the following three months while you collect the evidence to show that your staff are following the defined policies and procedures.

We provide you with the support needed to prepare documentation, train staff and complete the necessary steps to be put forward for an TISAX certification audit.

Starting with a full Gap Analysis of your current Information Security stance leading to an action plan for the areas needing improvement.

Along with the Risk Assessment, we help you define the required policies and procedures to prepare for certification.

The UK automotive supply chain are increasingly being required to comply with the TISAX standard (based on ISO27001) to ensure that documentation is all handled securely, especially confidential items.

Coast Consultants have helped several UK suppliers to the European vehicle manufacturers achieve the VDA TISAX standard.

We provide you with the support needed to prepare documentation, train staff and complete the necessary steps to be put forward for an ISO27001 re-certification audit.

Starting with Gap Analysis of your current Information Security stance against the new controls and those that have changed from the previous version.

The development of an action plan to ensure that any deficiencies are rectified and your documentation updated. This includes the enhanced Statement of Applicability.

Support while you present your new documentation to the cerification body for their evaluation.

A comprehensive review of your systems, policies and procedures.

We will identify any gaps in your compliance and advise you how you should direct your remediation efforts.

You may be unsure how to approach risk management as it is something that does not occur frequently, but you would still like specialist support when you need it.

Coast Consultants can provide tailored Risk Management packages to suit your requirements.

All ISO27001 certified organisations are required to undertake an annual audit, but the cost of retaining a suitably qualified and experienced person can be prohibitive.

Our experienced and qualified team can take this on cost-effectively with support tailored to your needs.

Our support comes in a lot of forms, but the key is that we can provide pro-active support for ISO27001 as and when you need it. This might be due to a change in circumstances or the introduction of a new regulatory requirement.

We can provide you with the support you need when you need it.

Our partnership with other consultancies working in Information security and related areas means we can also assist you in other areas.

Properly trained employees are your best line of defence against cyber attack and non-compliance. Without that training, they pose the greatest threat to your business statistically.

Our Information Security training for all levels of staff ensures they understand the risks in the current climate and are aware of the right steps to take to reduce risk.

Training is tailored to your own security controls and processes so is always kept relevant.

We help your business to achieve its information security aims by supporting you in applications for ISO27001, providing Risk Management support, and Internal Audits tailored to your business.

We believe in measurably reducing your risk of compromise, by giving you the best-in-class support to develop appropriate policies and practices. We will be there for you, and your organisation, should you require regulatory assistance with the standards, awareness training for staff and compliance checks on your suppliers.

We believe that our training packages effectively ensure that everyone in your organisation feels fully equipped to carry out their roles and responsibilities, when it comes to information security.