The ISO 27001 standard is used as a framework to ensure that a company’s Information Security Management System (ISMS), is safe, robust and secure.
As part of this standard, ISO 27001 objectives states that ‘Information about technical vulnerabilities of information systems being used must be obtained in a timely fashion, the organisations exposure to such vulnerabilities evaluated and appropriate measures taken to address the associated risk.‘
To satisfy this objective, a penetration test should be carried out to identify vulnerabilities in environments within the ISO 27001 scope.
As a primarily Penetration Testing organisation, we are able to perform key security assessments against environments within your ISO 27001 scope. This is our main service offering and is targeted at those companies who have already begun their ISO 27001 journey.
For clients wishing to start an ISO 27001, we have various specialist partners who we can put you in touch with to help guide you through this process.
In an introductory scoping session, exact scope of testing will be defined. This will be documented and discussed in a way that conforms with ISO 27001:A.12.7.1.
In this phase, the technical testing takes place. Environments will be assessed using both automated industry standard tools, but also with manual penetration testing techniques.
A technical report is issued, highlighting both high level risks and in-depth technical data. Debrief sessions are scheduled, discussing findings and potential next steps.
Get in Touch To Discuss Your Requirements.
© 2020 Ruptura InfoSecurity Limited. All rights reserved.
Company No 11644559 | Suite 122, Milton Keynes Business Center, Linford Wood, Milton Keynes, MK14 6GD
Necessary cookies are absolutely essential for the website to function properly. This category only includes cookies that ensures basic functionalities and security features of the website. These cookies do not store any personal information.
Any cookies that may not be particularly necessary for the website to function and is used specifically to collect user personal data via analytics, ads, other embedded contents are termed as non-necessary cookies. It is mandatory to procure user consent prior to running these cookies on your website.