Security Audits

Information Security Management Systems Audits

We do for our clients information security audits at all the organization levels and for all the internal processes. The audits are performed very detailed and in depth, according to the international audit standards, having as a purpose clear identification of security gaps (physical security, IT, personnel, management, installations and equipments) so that the organization will have an excellent overview of the status of its security preparedness and management, not tampered by positive reports from some "money maker" certification bodies. Nonconformities found are explained, classified, quantified to be a very good support for further implementation of the security international standards as ISO/IEC 27001:2005, ISO/IEC 27002:2005.

Usually, in our audit reports, we identify a lot of issues to be addressed (nonconformity, observation or opportunity for improvement) with objective evidences, following the company representatives to be in charge with corrective actions implementation. The corrective actions done effectively it makes possible 100 % Information Security Management System certification against ISO 27001:2005 (any certification body in the world) and proves legal compliance in the security domain. Our clients references are available by request.

Integrated management Systems Audit

Audits for quality ISO 9001, environmental ISO 14001, occupational health OHSAS 18001 management systems, SA 8000 social responsibility or integrated

We do such audits upon separate or integrated management systems and also as due diligence assessments before an agreement with your suppliers, in order to determine the actual status of the management system of your future partner. Also we do audits before your certification audits on behalf of registration bodies (ISO certification bodies). We asses the management systems of the client, based on our rich expertise in very complex systems beginning with ship building to automotive industry and telecommunication providers, and deliver reports with the exact state and progress of your processes. The nonconformities identified will be explained to allow a good understanding of your implementation level and require focused corrective actions towards system improvement.

In this case, our audit reports directly support management programs for setting up objectives, mandatory requirement in ISO 9001, ISO 14001, OHSAS 18001 standards.

You can rely on us doing professional audits because we exceed 1300 audits (not audit days) in more than 13 years of one single job - auditor of management systems.