Information Security Consulting
Our experts in ISO 27001, Cyber Essentials and IASME Cyber Assured come from a variety of technical backgrounds, and have been involved in and managed IT operations, as well as managing a variety of compliance framework implementations within clients and organisations including complex ISO 27001 Management Systems. Having an understanding of the practical constraints and operational realities in fast-paced IT environments ensures a pragmatic and realistic approach to advising on any implementation.
We offer a range of services within our enterprise governance consultancy:
ISO 27001 Implementation – our experts will work with your organisation to develop and refine quality and information management systems to enable you to implement effective controls and policies required to meet the requirements of ISO 27001.
ISO 27001 Interim Audits – our experts are ISO 27001 Lead Auditors and can support your team by performing audits, gap analysis, and action planning before any external audits required for ISO 27001. Such audits can also be used to fulfil regulatory compliance (for example Gambling Commission or other sectoral requirements).
Cyber Essentials / Cyber Essentials Plus - Cyber Essentials (CE) is a UK government-backed, industry-supported scheme to help organisations protect themselves against common cyber-attacks. Certification is a mandatory requirement for organisations wishing to undertake work for government departments and agencies. 3B Data Security will support you to achieve this accreditation for Cyber Essentials and Cyber Essentials Plus.
General Data Protection Regulation (GDPR) & Data Protection (DP) - GDPR applies to any country processing EU data and will impact on virtually every UK business. Currently, the only certification available to assure organisations of their compliance is the IASME Cyber Assured, we can assist you with this during the Cyber Essentials and IASME Cyber Assured certification process.
IASME Cyber Assured - As a growing business, it can be difficult to demonstrate your commitment to compliance without spending lots of time and resources on high-end international standards straight away. IASME Cyber Assured offers the pathway to demonstrating your organisation’s commitment to information security as part of the UK supply chain through the three pillars of Technology, Process and People.
Who is IASME?
The IASME Consortium is the accreditation body for the government-backed Cyber Essentials certification scheme and the award-winning IASME Cyber Assured standard. Based on international best practice, IASME Cyber Assured is risk-based and includes key aspects of security such as incident response, staff training, planning and operations as part of your route towards business growth and international recognition.
Our team are highly experienced with developing, refining and implementing controls, policies and procedures to ensure compliance to a wide variety of regulatory requirements, including ISO 27001, GDPR, Cyber Essentials and other regulations and standards. Several of our staff work as Lead and Technical Auditors for external bodies, including IASME, UKAS, and TuV UK to name a few.