Information Security consultant based in Manchester

INFORMATION SECURITY

Having a cost effective security programme, and utilising an experienced security professional is key to any business.

customers

want a secure supply chain.
Employees

need to know their data is safe.
external auditors

demand evidence and records.

SECURITY SOLUTIONS

Scoping or merging your management system

One of the areas we work with business on, is correctly scoping your security management system as over time it can change […]
Gap analysis and report

Our security gap analysis will look to the security standard you are requesting and determine if your current performance meets your desired and expected performance […]
ISO27001 Implementation

We have the ability and knowledge to deliver the most cost effective and certifiable ISO27001 implementation to meet your needs […]
Internal Audit and report

We work and audit for a number of certification bodies and therefore are best placed and competent to conduct an internal audit that […]
ISO27001 Maintenance and Support

If you are looking to have a resource manage your ISMS for a short time or maybe long term then we are more than happy to assist […]
Pre-certification 27k audits

ParkinsonHowe on request can performs ISO 27001, 27017, 27018 and 27701 mock certification audit which will provide you with […]

Did you know?

of companies lack an understanding on the context of operational security
of businesses Have not considered what is meant by the term access control and what it means
of organisations lack the knowledge and ability to plan security to meet new demands

ENDORSEMENTS

An excellent professional approach keeping in mind the requirments for ISO 27001 and Standard 55, all was delivered as requested, within the expected timelines and quality requirements of the engagement. Everyone involved on the project would certainly recommend.

Security and Audit Manager
Celerity
ParkinsonHowe was able to provide clarity when we acquired a similar size organisation and had to merge not only the information security management system scopes but the business continuity management system into one, they provided the guidance and reassurance on what could and could not be done.

VP of Security and Continuity
F&C

Information Security Approach

Background

ParkinsonHowe was formed in 1995 to provide high quality consultancy services for commercial and governmental business sectors.

ParkinsonHowe’s particular strengths lie in the provision of, Information Security skills, strong Project Management and Quality Assurance capabilities.

ParkinsonHowe has taken a number of high-profile companies through to certification for information security management systems.
What we do

ParkinsonHowe provides professional consultancy services to organisations developing formal information security systems.

We provide all the required solutions and processes for information security from security policies, procedures, risk assessments, GAP analysis and statements of applicability, to companies wishing to apply formal security measures.

Over the last 20 years we have grown to be recognised as a company that is willing to assist no matter how small your requirement is whether that be a phone call or full implementation. ParkinsonHowe provide information security management services and awareness training seminars to customers in all business sectors.
What we provide

We will provide an unbiased and objective view of your information security, by providing an impartial and independent view of your operations, allowing you to provide senior managers, customers, and external auditors with an unbiased security reporting. ParkinsonHowe can look beyond day-to-day security allowing you to consider the wider issues you may be facing for example reputation damage due to security incidents, data loss or a lack of employee awareness.

Overall, we will re-assure your business that processes are being followed or can easily be refined, and if requested we can assist in educating managers or team leaders on how well the systems and processes are working to keep your business on track and working.

We work from the UK; however, several of our customers are based in the USA which allows us to prepare work and reports for them before the start of their business day, it also allows a company with satellite offices in both the UK and USA to benchmark all sites and determine which processes should be implemented across sites.

SCOPING OR MERGING YOUR MANAGEMENT SYSTEM
One of the areas we work with business on, is correctly scoping your security management system as it will change over time, our work meets that requirment.
- Looking to implement ISO 27001 for the first time.
- Looking to expand/extend your ISMS to other parts of the business.
- Merging ISMS’s after an acquisition.
All these areas can initially be confusing, and we are here to assist

Gap Analysis & report
Our security gap analysis will look to the security standard you are requesting and determine if your current performance meets your desired and expected performance. We have the expertise to conduct a gap analysis against the following common security standards:
- ISO 27001:2013
- ISO 27017:2015
- ISO 27018:2020
- ISO 27701:2019
If you require an assessment to establish your common level of security and mayturity as per:
- TISAX:
- CSA*
we are here to help.

ISO 27001 Implementation
We have the ability and knowledge to deliver the most cost effective and certifiable ISO27001 implementation to meet your needs, whether that be:
- Documents in MSWord or Excel.
- Cloud based solutions
We have the knowledge, understanding and have worked on many different solutions, always bearing in mind that getting the best solution for you is paramount.

Internal Audit & report
We work and audit for a number of certification bodies and therefore are best placed and competent to conduct an internal audit that will firstly meet your requirements and secondly meet Certification and accreditation rules.

During our work we will seek to clarify ask for the following information
- Understand your current operational management system.
- Review your policies, procedures, and work instructions.
- Identify gaps in your implementation of ISO27001:2013.
- Recommend security controls appropriate to your requirements.
- Internal audit timescales that match your current certification.
- Control testing to verify that control owbers are working within established limits.
- Process audit to verify that processes are working within established limits.
- Produce and deliver audit reports that meet ISO, UKAS and certification body standards.
All these areas can initially be confusing, and we are here to assist.

ISO 27001 Maintenance & Support
If you are looking to have a resource manage your ISMS for a short time or maybe long term then we are more than happy to assist, we will work with your business and guide you for the lifecycle of certification and beyond. Should the standard change, we are in the best position to review and manage the changes in your management system.

Pre-certification security audits
ParkinsonHowe on request can performs ISO 27001, 27017, 27018 and 27701 mock certification audit which will provide you with the following benefits:
- Understand the requirements of certification and the rules.
- Provides you with an understand of the weaknesses and areas to be addressed the certification audit.
- Allows the organisation to understand the audit processes.
- Educates the control owners in understand what is required in terms of documentation and evidence when supporting the certification audit.

© Copyright MCMXCVIII - MMXXI | ParkinsonHowe Ltd. Registered in England and Wales No. 3448184 | Privacy Policy | Terms of Use

Template by OS Templates