IASME Governance Audited

Maps to The Government’s 10 steps to cyber security & NIS Directive

The audited IASME Governance standard is IASME’s highest level of certification and is an excellent alternative to ISO 27001 for small and medium sized organisations

Apply Now

The standard includes all of the five Cyber Essentials technical topics and adds additional topics that mostly relate to people and processes, for example:

Risk assessment and management

Monitoring

Change management

Training and managing people

Backup

Incident response and business continuity

By gaining the Audited IASME Governance certificate your organisation is achieving IASME’s highest level of certification and providing assurance to customers and suppliers that your organisation’s security has been audited by a skilled, independent third-party.

WHERE IS THE IASME GOVERNANCE AUDITED STANDARD USED?

The procurement teams of many large companies will accept the IASME Governance Audited standard as independent confirmation of good information and cyber security practice.

This is extremely useful when trying to win tenders and renew contracts, particularly where supplier requirements mention ISO 27001.

For example, The Government of Jersey is one organisation that has specified IASME Governance Standard within its security standards document.

HOW IS THE ASSESSMENT CARRIED OUT?

In order to achieve IASME Governance Audited standard is to contact one of IASME’s Certification Bodies for a quote. You can do this through an online form and we will ask two Certification Bodies in your region to send you a quote.

Your chosen Certification Body will then discuss with you the scope of the assessment and arrange a mutually convenient time to visit your organisation’s head office to carry out an audit of your policies and process.

This audit usually involves interviews with members of staff and a review of documentation and system configuration.

It does not involve a technical assessment unless you are being assessed to Cyber Essentials PLUS at the same time, although it may be helpful to have technical staff available to provide evidence to the assessor of your system configuration.

The assessor may also wish to visit branch offices or other locations in order to satisfy themselves that your good security practice is reflected across the organisation.

RENEWAL

The audited certification is renewed at the end of years 1 and 2 by simply renewing the online IASME Governance assessment.

At the end of year 3 a full audit, as described above, is required again to renew the certification.

Find Out More

Have a look at our Frequently Asked Questions or speak to our team

FAQs