Welcome to your detailed Guide to Certification!

As we embarked on this journey together, your dedicated Customer Success Manager introduced you to an invaluable companion – the Project Status Report. This tool is more than just a checklist; it's a roadmap, designed to guide and support you while granting us the opportunity to stay connected and informed about your journey.

Your Essential Guide to Demystifying Terms 🕵️‍♀️

In our pursuit to make every step of your journey intuitive, we've curated this dynamic glossary. Here, you'll discover essential terms accompanied by insightful background details, ensuring you never find yourself in unfamiliar territory.

But wait, there's more!

Not only does this glossary decipher terms, but it also serves as your gateway to deep-diving into best practices. As you navigate, you'll come across dedicated links leading to help articles, designed to empower you with the knowledge you need to achieve your project's pinnacle.

This initial phase is about setting the foundation for your certification journey. It includes tasks like defining the project scope, setting up shared folders, scheduling bi-weekly check-ins, and familiarising yourself with our public roadmap.

Relevant Articles:

Here, you will set up your Secfix platform, connect your cloud infrastructure and identity provider (IdP), and establish user groups. This phase ensures that your system is ready for managing compliance tasks and employee data.

Relevant Articles:

This phase focuses on ensuring that all employees are onboarded into the compliance program, with each one assigned the necessary tasks, including installing the Secfix agent and completing security training.

Relevant Articles:

In this phase, you’ll delve into the fundamentals of the Information Security Management System (ISMS). This involves understanding policies, writing the initial batch of policies, and watching foundational ISO 27001 training.

Relevant Articles:

Risk management is essential for identifying and mitigating potential security threats. In this phase, you’ll create vendor lists, assign risks, complete risk assessments to safeguard your company’s information and work on the corresponding policies.

Relevant Articles:

Managing your company’s assets and controlling access to information are key components of ISO 27001. In this phase, you’ll complete your asset inventory, set up access control measures to protect your systems and complete the relevant policies.

Relevant Articles:

Documentation is at the heart of ISO 27001. In this phase, you’ll write key operational policies, gather evidence, and ensure that all required documentation is ready for audit.

Relevant Articles:

Vulnerability management involves identifying and fixing potential security weaknesses. You’ll conduct vulnerability scans and activate continuous security monitoring to detect and address vulnerabilities

Relevant Articles:

This phase focuses on preparing for security incidents and ensuring business continuity. You’ll write incident management and business continuity policies and conduct tests to ensure your readiness.

Relevant Articles:

Once your policies are written, you’ll upload them to the Secfix platform and ensure that employees read and accept them. This phase also helps you maintain version control of your documentation.

Relevant Articles:

Before the external audit, this phase ensures that you’re ready. You’ll work on your Statement of Applicability (SOA), prepare for the internal audit, and remediate any findings to strengthen your ISMS.

Relevant Articles:

This final phase prepares you for the external audit. You’ll undergo the Stage 1 and Stage 2 audits, address any non-conformities, and ultimately obtain your ISO 27001 certification.

Relevant Articles:

The ISO 27001 Project Status Report is your ultimate guide to navigating the certification process with ease. By breaking down the journey into clear, manageable phases, we help you stay organized, focused, and on track to achieving certification. Don’t forget to check in regularly with your Customer Success Manager, who is here to help you every step of the way.