How to Get Certified to ISO 27701?
14th January 2025
The ISO 27701 – Privacy Information Management Systems (PIMS) belongs to the ISO 27000 series, which is a set of standards focused on Information Security
As every manager knows, a disaster can occur when you least expect it, and can take many forms – from fires and floods to IT failures and cyber attacks. Each has its own set of consequences but what they have in common is their potentially devastating impact on the running of your business.
Returning to business-as-usual as soon as possible is naturally your priority, and having a solid business continuity plan in place will make a huge difference in your ability to achieve this.
Don’t leave business continuity solely to the IT department; your plan should be business-focused and thoroughly tested. Many businesses do not have the time or expertise to do this, which is where Dionach comes in.
What we do
You may require support with business continuity as part of an ISO 27001 implementation, or you may wish to work towards ISO 22301 certification.
In both cases, Dionach uses ISO 22301 as the framework for business continuity management which ensures your plans follow best practices and align to the standard’s requirements.
Our consultants can help to create a business continuity plan, a full management system or test the effectiveness of your existing plans and processes.
TYPICAL ENGAGEMENTS
- Review of the BCMS scope.
- Working through the business impact analysis with different departments.
- Determining business continuity strategies.
- Producing a risk assessment.
- Creating business continuity and disaster recovery plans.
- Establishing a regular business continuity exercise schedule to test the effectiveness of your strategies and drive continual improvements.
HOW WE WORK
We deliver the whole spectrum of cybersecurity services, from long-term, enterprise wide strategy and implementation projects to single penetration tests.
Our team works with you to identify and assess your organization’s vulnerabilities, define enterprise-wide goals, and advise how best to achieve them.
Our recommendations are clear, concise, pragmatic and tailored to your organization.
Independent, unbiased, personalized – this is how we define our services. We guide you to spend wisely and invest in change efficiently.
Find out how we can help with your cyber challenge
dISCOVER OUR LATEST RESEARCH
Data Security and Protection Toolkit (DSPT) 2024/2025 CAF
9th January 2025
The new DSPT for 2024/2025 is now aligned to the NCSC Cyber Assessment Framework (CAF). This version 7 of the DSPT. Organisations are required
PCI DSS 4 Requirements Becoming Mandatory End of March 2025
8th January 2025
Overview The 51 future-dated requirements in PCI DSS 4 are becoming mandatory on 31st March 2025. Some of these requirements only apply to service providers