Information Security & Cloud Protection — with ISO/IEC 27017 and ISO/IEC 27018.
Digital transformation and cloud computing open growth opportunities but expose your company and customer data to greater risk than ever. DNH helps you build a robust security system to ISO/IEC 27001 — integrating cloud security (ISO/IEC 27017) and personal-data protection (ISO/IEC 27018).
Get a quick ISO/IEC 27001 readiness assessment.
ISO/IEC 27001:2022 is the international standard for Information Security Management Systems (ISMS) — and the only standard in the ISO/IEC 27000 family that can be certified. Implementing ISO/IEC 27001 helps your organization:
The ISMS foundation, managed on a risk basis; Annex A contains 93 controls across 4 themes (Organizational, People, Physical, Technological).
A code of practice for cloud-service security, based on ISO/IEC 27002 with 7 cloud-specific controls; for both cloud providers and cloud customers.
Protection of personally identifiable information (PII) in public clouds — highly relevant to Vietnam’s Decree 13/2023/ND-CP.
Gap assessment, risk assessment & treatment, developing policies – procedures – the Statement of Applicability (SoA), implementing controls, integrating 27017/27018, internal audit and certification readiness.
ISO/IEC 27001:2022 Awareness & Internal Auditor, cloud security (27017), personal-data protection (27018), and information-security awareness for employees.
Reduces real risk — not just to obtain a certificate.
In ISMS, auditing and information security.
Solutions built around your IT systems and cloud architecture.
From current-state assessment through certification and continual improvement.
Technology, software and SaaS companies; cloud service providers and data centers; banking, finance and fintech; e-commerce; telecommunications; healthcare; software outsourcing and BPO; and any organization that processes large volumes of personal data or takes part in international supply chains.
Yes. Start with a Gap Assessment to identify your starting point and build a suitable roadmap.
A great deal. ISO/IEC 27001:2022 and ISO 9001:2015 share the Annex SL structure, so they can be integrated into a single unified management system.
Typically 4–9 months, depending on the size and complexity of your IT system.
Register for a free consultation — get a quick assessment of your organization’s ISO/IEC 27001 readiness.