ISO/IEC 27701:2019

Certification Readiness

Overview

The ISO/IEC 27701:2019 certification certifies an organization’s Privacy Information Management System (PIMS) and requires accredited auditing firms to review and certify these programs if they are aligned with the ISO/IEC 27701:2019 framework.

In order to maintain the ISO/IEC 27701:2019 certification, organizations must be audited in depth every three (3) years and undergo a lighter surveillance audits every year in-between.

The ISO/IEC 27701:2019 certification is an extension/add-on to the ISO/IEC 27001:2019 Information Security Management System (ISMS) certification.

Our Approach

Omni Group Consulting will guide your company through the ISO 27701 security certification process. Leveraging your ISO 27001 policies, processes and procedures, we will help your organization plan, design, and implement your privacy program and prepare for certification. Certification readiness activities include items listed below:

  • Reviewing the organization’s current security control set

  • Reviewing readiness assessment

  • Establishing an agreed upon remediation timeline between relevant stakeholders

  • Managing the project through completion

  • Leveraging your company’s technology and personnel we will collaboratively determine the best solutions to close the gaps identified in the planning/discovery phase

  • Working with your company’s team members to vet solution providers when appropriate

  • Documenting controls in a manner which directly addresses certification requirements

  • Working with your company’s team members to implement solutions

  • Assign and document roles and responsibilities

  • Acting as the liaison between your company and certification auditors during the external audit period to reduce the felt impact of audit fatigue by your company’s teams:

    • Collecting, vetting, and presenting audit evidence

    • Representing and articulating your company’s required controls

 

Have Questions?

Certification is a journey and every organization has unique challenges, needs, and goals. We would love to learn more about your company and to explore how we might be helpful!

 

E-mail Us

or

Schedule a Free Consultation