Projects leading to certification - carried out on-site or remotely!
Information security
Certified Management System for Information Security - ISO 27001, 27701 & SSF 1101
ISO 27001 and ISO 27701
For many organizations today, information is the most valuable asset. Therefore, to protect their information assets, more and more organizations are choosing to develop an information security management system. Depending on the type of organization and the scope of the requirements, you can choose different standards to certify against.
For organizations with more extensive requirements and risks, certification against ISO 27001 and ISO 27701 is recommended. For other organizations, the new, less comprehensive standard SSF 1101 may be a good choice. Following a standard in the work with information security provides a systematic approach and creates better conditions for an effective and efficient system. Qbase offers project management and training in both these standards and we can help you achieve certification. We help your organization to identify which standard suits your conditions and help with implementation and follow-up.
ISO 27001 gives your organization an approach to information security that leads to risk minimization and continuous improvement. The work is based on your protectable information assets. The standard covers processes, procedures, policies and objectives for information security work. The result is a systematic approach that ensures the protection of your information assets and takes into account stakeholder requirements such as customer requirements, owner requirements and legal requirements.
ISO 27701 is an extension of ISO 27001 that aims to minimize the risk of personal data breaches. The standard can also help organizations comply with GDPR and other data protection regulations. ISO 27701 includes more requirements and guidelines and together with ISO 27001 there is the possibility of certification.
Get a free quote!
Fill in the form below and we will get back to you shortly.
SSF 1101
SSF 1101 is a simpler and more practical standard for information security. The standard is not so much focused on the systematics, but instead focuses on a number of measures that are fundamental to information security and that all organizations should have in place.
Our consultation and support within SSF 1101 ensures that even smaller organizations have the necessary measures in place for information security.
Benefits of an information security system:
A well-implemented information security system gives your organization a systematic process-based approach to continuously improve your information security. It also increases your trust and strengthens your brand with customers and stakeholders. Implementing these management standards will help you meet the three aspects of information security:
- Confidentiality
- Integrity
- Accessibility
With our expertise in certifications such as ISO 27001, ISO 27701 and SSF 1101, we ensure that your organization reaches a high level of information security.
A well-structured information security system also delivers:
- The protection of business information and information assets.
- Organizations minimize their security risks.
- A method that makes it easier to get a holistic approach to information security that evolves with your business and the world around you.
- Measures to avoid breaches of laws, regulations and contractual obligations.
- Strengthened brand and increased trust from the outside world.
Project Management and Service Agreements
Qbase has worked with developing, implementing and maintaining management systems within different standards for organizations for over 10 years. Our solid experience in this field extends between industries such as health & care, IT, industry, cleaning and staffing to name a selection.
We manage and take responsibility for the project until the management system is certified. We work according to a well-proven project model that ensures cost-effective implementation and good results.
In our work, we combine our knowledge of current standards with practical experience of leading and developing organizations and businesses. Our background gives us the skills and tools to create management systems for real improvements.
We can be involved from start to finish, helping you to interpret, create and document ways of working that meet the requirements of current standards. Once the objectives have been identified, we continue to assist in the development and management of the systems in accordance with the wishes of the business.
We ensure that the system follows current standards, works smoothly and is easy to use for employees.
Documenting your management system facilitates internal work and leads to efficiency and increased turnover.
When the project to implement the management system is completed and processes and procedures are anchored, the management system must be maintained in order for it to live on. This is a job that sometimes collides with the operational work and therefore we offer service agreements where we take on the role of external system manager.
We take responsibility for, among other things:
- Monitoring of current requirements and coordination of activities for Legal compliance.
- Contacts with the certification body.
- Conducting internal audits.
- Updating and reviewing documents.
- Coordination and implementation of activities according to the annual cycle.