Initial audits, so-called 'zero' audits, are a short initial verification, usually lasting 3-5 days, of the current state and level of preparedness of the organisation to implement safety management systems.
The result is a report, addressing the following areas:
- Information security management
- Cyber security
- Risk analysis
- Business continuity management
- Physical security of facilities
Depending on your needs, we perform audits in the areas of:
- Verification prior to certification of the Information Security Management System (ISMS) to the requirements of ISO/IEC 27001
- Verification prior to certification of the Business Continuity Management System (BCMS) according to ISO 22301 requirements.
- Verification of compliance with the National Cyber Security System Act
- Verification of compliance with GDPR/RODO
The result of each audit is a detailed report covering all the issues described in the standards or legal acts. The report may be drawn up in Polish or English.
- The basic methodology for the work is derived from the requirements of ISO/IEC 27001:2017 including the recommendations for information security practices from ISO/IEC 27002, and conducting risk analysis according to the requirements of ISO 27005.