ISO 27001


Setting the standard in achieving information security best practice

ISO 27001 is an internationally recognised standard for information security. Vendor and Technology neutral, it takes a risk-based approach which companies can apply to securing their most valuable information. Whether you are obliged by regulatory requirements or not, attaining the ISO 27001 standard demonstrates to your customers and other key stakeholders that you value both their information and your organisation’s reputation.

Whether your organisation needs to measure your current information security practices against the ISO 27001 standard, or achieve certification to the standard, BH Consulting can provide expert guidance on:

  • Internal ISO 27001 audits
  • Risk assessment workshops
  • Risk Mitigation plans
  • ISO 27001 training
  • Gap analysis to check current policies against the standard
  • Aligning your Information Security Management System (ISMS) with ISO 27001

Certification services
based on experience

We are proud to say that we maintain a 100% success rate with all clients who have engaged us in helping them achieve ISO 27001 certification.

All of our consultants are certified ISO 27001 Lead Auditors, so you can be confident you’re working with recognised experts. What’s more, BH Consulting as a company is certified to the standard, so we fully understand what’s involved as a business in achieving and maintaining certification.

For more information, please contact us.


The people aspect of security is often overlooked but it’s one of the most cost-effective ways of improving an organisation’s ability to counter threats.

Whether you need a general security awareness programme for all staff, or specific courses to meet a particular business or security objective like compliance targets, talk to BH Consulting about delivering tailored training that reduces your risk.