ISO 27001 based on the IT baseline protection audit
Auditing with the framework of a BSI certification ISO 27001 based on BSI IT baseline protection
activeMind AG employs experts, who are BSI-licensed as IT baseline protection auditors according to ISO 27001. These data security experts possess many years of experience in preparing and conducting the corresponding audits. In order to guarantee the required independence, we make a strict distinction between consulting and auditing. Thus, an audit by us can only take place if we have not consulted your company in matters of information security.
Process of the audit
We accompany you through your certification process: expeditiously, practically oriented and equitably.
- Prior to the official beginning of the audit procedure, a preliminary discussion takes place as well as the mutual planning of the timeframe and procedure.
- The audit procedure, which in principle is limited to three months, is initiated upon submission of the reference documents to us.
- After we examine the documents, and you make improvements if necessary, the second phase of the audit follows with the on-site inspection of the selected measures. Should deficiencies be detected, we’ll inform you shortly thereafter, and you’ll have the opportunity to correct them.
- After the completion of all audit measures, we submit our audit report to the BSI.
activeMind has extensive experience in conducting audits. We examine the essentials in a goal-oriented manner, which allows us to deliver an overview of the results to you already at the end of the audit day. This enables you to make immediate improvements if necessary. We constantly strive to conduct a time-effective and minimally invasive audit for you.