For the Market Research Industry and SMBs
Expert guidance and implementation support for your ISO 27001 or Cyber Essentials certification project. This service not only helps you to meet client requirements by taking you all the way through certification, but also aims to give you the tools to minimise security risk to your business. InfoShelter is an IASME accredited Certification Body for Cyber Essentials. We are also qualified ISO 27001 Lead Auditors.
Once you establish your ISO 27001 certified Information Security Management System, you may need some assistance in maintaining it. We offer a tailored package to help you run your security processes whilst continuously assessing their effectiveness and ensuring they are a good fit for your organisation. Our experienced team can work alongside your operations teams to not only ensure you have a good set of records for your next external audit, but that you are getting the best out of your ISMS and it is actually reducing security risk.
This service is designed to offer transparent security related operational activities tailored to your requirements. By having a seasoned virtual security manager on-hand, your organisation can benefit from over 10 years of security and privacy experience and over 20 years IT experience in the market research industry for a fraction of the cost of a dedicated in-house employee. We are very comfortable working alongside your internal or external IT and operations teams to deliver security services. Our aim is to become a trusted advisor to your team.
We can help with any specific issues you may have relating to information security or privacy and data protection on an ad hoc basis. This could include assistance in completing a security questionnaire for a client or insurance company, assessing the security posture of a new supplier, a security and privacy risk assessment of a new cloud tool you want to use, or help with a security incident.
John is a highly talented ISO 27001 professional with both deep understanding of the standard as well as the convivial character that allows it to be understood and implemented both in the business and the technical areas of his clients. During his time with me, he was my "go-to" consultant for delivery as he could rapidly understand a complex set of requirements and turn them into actionable outcomes for our clients. I have no hesitation in recommending John as he is an outstanding consultant in whom I have always had the most faith and always knew he would deliver a top rate service.
I got back in touch with John to request help with Illuminas' preparations for GDPR and an upcoming ISO 27001 re-certification audit. After knowing and working with John for a number of years the Illuminas Partners and I were confident he would be ideally placed to help us with both of these projects. We were not disappointed. John's in-depth knowledge of ISO 27001, thorough auditing skills, and strategic thinking helped us sail through our re-certification. John also became our DPO and trusted advisor on all things privacy after his pragmatic, flexible approach to helping us meet the requirements of the Regulation in full. I would have no hesitation in recommending John to any company, particularly any research agency, looking to become ISO 27001 certified.
Firefish has worked with John since 2016 and since then he’s become a respected member of the team. John has helped Firefish to success with both our GDPR compliance programme and ISO27001:2013 certification and achieving these have been business critical. Having sound but workable processes and procedures around information security and data protection helps us to provide knowledge and reassurance to our clients every day. John provides fantastic frameworks to help structure and action what seem like impossibly mammoth tasks and his results prove they work. On a personal level John is professional, calm, patient and has a great eye for detail. I wouldn’t hesitate to recommend John’s consultancy services.