Information Security Management System
ISO 27001:2022 is a generally accepted standard for the implementation of an „Information Security Management System“. Provisions for the existence of such a management system can be found in many laws, e.g. the Act on Critical Infrastructure, the Act on Financial Undertakings and other laws. This is also a requirement in the GDPR, which contains a specific provision on the protection of personally identifiable data through „appropriate technical and organizational measures“.

The recent EU NIS-2 Directive also requires that an information security management system be in place according to generally accepted standards. Infoguard ehf has assisted a number of companies with the implementation of ISO 27001, including the latest version of the standard, ISO 27001:2022. We follow a specific methodology that includes seven steps for implementation.

Implementing ISO 27001:2022
Implementing ISO 27001 as a project varies in size and scope. Below you can see an introduction to our implementation methodology

Information security management is a way to promote the secure processing and storage of all company information. If you are looking to implement or demonstrate compliance with the ISO 27001 standard, Infoguard ehf is the right place for you.

We can and have implemented ISO 27001 at a number of companies both to obtain certification and also to use ISO 27001 as an information security management system.

Please send an email to infoguard@infoguard.is for more information