Cybersecurity Solutions

With the development of technology and advancing threats every day, more and more organizations are turning to management systems to manage and mitigate the risk associated with data and information.

Contact us

Name
Email
Country
Message

We will only use your details for this request, they will not be used for any marketing. Read our privacy policy for more information.

We won't pass your details on to third parties.

We offer certification services for the below information resilience standards:

CMMC (Cybersecurity Maturity Model Certification)

The Cybersecurity Maturity Model Certification is the latest verification method put in place by the Department of Defense. This certification is the Department's first attempt to set clear requirements for contractors when it comes to cybersecurity. The ultimate goal of the CMMC is to implement an appropriate level of cybersecurity across the supply chain of the defense industrial base.

NIST 800-171

Compliance to NIST frameworks is a pre-requisite typically flowed down through governmental contracting processes, but similar expectations are seen in the private sector. While self-attestation may be an option, many organizations do not have the bandwidth or knowledge-base to give an accurate assessment of themselves; instead they outsource their NIST compliance needs to NQA. We offer independent assessment, attestation and DoD Scoring to NIST SP800-171, NIST SP800-53, CNSSI No.1253, and more.

ISO 27001

This standard provides a framework for Information Security Management Systems (ISMS) that enables the continued accessibility, confidentiality and integrity of information as well as legal compliance. ISO 27001 implementation is an ideal response to customer and legal requirements such as the Data Protection Act and potential security threats including cyber theft and crime.

ISO 27701

This standard is a data privacy extension to ISO 27001. This newly published information security standard provides guidance for organizations looking to put in place systems to support compliance with GDPR and other data privacy requirements.

ISO 27017

ISO/IEC 27017:2015 is an information security code of practise for cloud services. It’s an extension to ISO/IEC 27001:2013 and ISO/IEC 27002, and it provides additional security controls for cloud service providers and for cloud service customers. An organisation implementing the standard would select the relevant controls for their circumstances.

ISO 27018

ISO/IEC 27018:2019 is an information security code of practise for cloud service providers who process personally identifiable information for their customers. It’s an extension to ISO/IEC 27001:2013 and ISO/IEC 27002, and it provides additional security controls. It details privacy requirements and security control enhancements for privacy to be implemented by cloud service providers.

ISO 20000-1

This standard is an information security code of practise for cloud services. It’s an extension to ISO/IEC 27001:2013 and ISO/IEC 27002, and it provides additional security controls for cloud service providers and for cloud service customers.

ISO 22301

This standard provides a practical framework for setting up and managing an effective business continuity management system. This aims to safeguard it from a wide range of potential threats and disruptions including: technology failure, sudden loss of critical resources, natural disasters, terrorist attacks and other emergency situations.
 

Steps to Certification

  1. Step 1

    Complete a Quote Request Form so that we can understand your company and requirements. You can do this by completing either the online quick quote or the online formal quote request form. We will use this information to accurately define your scope of assessment and provide you with a proposal for certification.

  2. Step 2

    Once you’ve agreed your proposal, we will contact you to book your assessment with an NQA Assessor. This assessment consists of two mandatory visits that form the Initial Certification Audit. Please note that you must be able to demonstrate that your management system has been fully operational for a minimum of three months and has been subject to a management review and full cycle of internal audits.

  3. Step 3

    Following a successful two stage audit, a certification decision is made and if positive, then certification to the required standard is issued by NQA. You will receive both a hard and soft copy of the certificate. Certification is valid for three years and is maintained through a programme of annual surveillance audits and a three yearly recertification audit.

See more details

Ready to start your journey?

We'll give you a clear indication of the costs of gaining and maintaining certification.
Not ready yet? Call us at (800) 649-5289 or request a call back to discuss your certification requirements.