ISO/IEC Readiness Assessment
A formal Readiness Assessment is not a requirement of certification to the ISO/IEC 27001 Standard but it can be helpful in assisting organizations in the process of getting properly prepared for initial certiﬁcation. The intention of the assessment is to save the organization time and money by identifying deficiencies in its Information Security Management System (ISMS) before seeking Certification to the ISO/IEC 27001 Standard.
Many organizations have found this to be an important step in the process of preparing the organization for the formal Certification Audit.
In the pre-assessment, Coalfire ISO will perform a high-level review of your intended scope, policies, procedures, and control processes to identify gaps in the conformity of your proposed ISMS to the ISO/IEC 27001: 2013 Standard. The assessment will provide a comparison between all requirements of the Standard and the processes, procedures and controls you have in place for the design, implementation, operation, and maintenance of your ISMS. The final result will be a report providing clarity on the deficiencies that will need to be addressed before a formal Certification Audit should be attempted.