With the development of technology and advancing threats every day, more and more organizations are turning to management systems to manage and mitigate the risk associated with data and information. 

Information Resilience and Risk Management Standards Supported by NQA

ISO 27001

This standard provides a framework for Information Security Management Systems (ISMS) that enables the continued accessibility, confidentiality and integrity of information as well as legal compliance. ISO 27001 implementation is an ideal response to customer and legal requirements such as the Data Protection Act and potential security threats including cyber theft and crime.

ISO 27701

This standard is a data privacy extension to ISO 27001. This newly published information security standard provides guidance for organizations looking to put in place systems to support compliance with GDPR and other data privacy requirements.

ISO 27017

This standard is an information security code of practise for cloud services. It’s an extension to ISO/IEC 27001:2013 and ISO/IEC 27002, and it provides additional security controls for cloud service providers and for cloud service customers.

ISO 27018

This standard is an information security code of practise for cloud service providers who process personally identifiable information for their customers. It’s an extension to ISO/IEC 27001:2013 and ISO/IEC 27002, and it provides additional security controls. It details privacy requirements and security control enhancements for privacy to be implemented by cloud service providers.

ISO 20000-1

This standard is designed to help organizations deliver effective managed IT services to customers and maintain those standards over time. It helps organizations efficiently deliver quality IT Service Management through a comprehensive process approach. ITSMS implementation is designed to be a bedrock upon which to build continually improving service management systems.

ISO 22301

This standard provides a practical framework for setting up and managing an effective business continuity management system. This aims to safeguard it from a wide range of potential threats and disruptions including: technology failure, sudden loss of critical resources, natural disasters, terrorist attacks and other emergency situations.

CMMC (Cybersecurity Maturity Model Certification)

The Cybersecurity Maturity Model Certification is the latest verification method put in place by the Department of Defense. This certification is the Department's first attempt to set clear requirements for contractors when it comes to cybersecurity. The ultimate goal of the CMMC is to implement an appropriate level of cybersecurity across the supply chain of the defense industrial base. 

Get Started Today!

To receive a quote, complete the NQA online Request for Quotation or give us a call. Get all of your questions answered, choose the package that works best for you, and then you’re ready to go!