How safe is your Schools data?
Use the only School specific, simple step, intelligent workflow platform to help protect your communities information.
Deliver it at your pace with a full range of bespoke, customised policies and procedures built for you, for your School.
Take your School to ISO 27001 Certification!
The gold standard in Information Security.
ISO 27001 certification is a globally recognised standard for information security management. It provides a systematic approach to managing and protecting sensitive information assets, ensuring confidentiality, integrity, and availability.
Our Expertise
Our team of IT professionals specialises in providing ISO 27001 certification services to schools. We have years of experience in managing and protecting sensitive information assets, ensuring confidentiality, integrity, and availability.
Our Mission
We are committed to helping schools achieve ISO 27001 certification and improve their information security posture. Our mission is to provide the fastest, simplest but most comprehensive security services to schools, to ensure their sensitive information assets are protected.
Our Approach
Our approach is a simple, systematic and comprehensive solution to managing and protecting sensitive information assets. We have worked closely with schools and understand their unique needs and develop customised plans to achieve ISO 27001 certification.
Why Choose Us
Expertise
Our team of IT professionals specialises in providing ISO 27001 certification services to schools. We have the expertise and experience needed to help schools achieve their information security goals through our easy to use, automated platform.
Efficiency
Our agile approach is fast and efficient, ensuring that schools can achieve ISO 27001 certification quickly and without disruption to their operations. The platform guides you every step of the way leaving nothing to chance ensuring you have the best possible chance to pass the external audit!
Certified
We are 27001:2022 Lead Auditor certified with a comprehensive understanding of of the ISO 27001 standard. We know what it takes to get you certified, and our easy to use solution is built on this knowledge.
Our plan - your Success!
4
Documentation
​​​
-
Following the Agile workflow, it will automatically build out the Statement of Applicability - a guided walkthrough of what ISO Controls make sense to be audited against for certification for your School
-
With your input, it will identify Risk treatment plans, asset inventory, and more
-
Incident response and business continuity plans built, tailored to the school's requirements
-
It will also establish a document control system to manage policies, procedures, and other critical documents
5
Custom ISMS
​​
-
Workflows will develop a customised ISMS aligned with ISO 27001 and your schools requirements
-
Then it will create policies, procedures, and guidelines to support the ISMS implementation
-
Finally you will establish an information security governance structure within the school including executive sponsorship and key roles and responsibilities
6
Risk Assessment
​
-
A comprehensive risk assessment will be generated to identify potential threats and vulnerabilities
-
A risk management framework will be built to prioritise and mitigate identified risks
-
Additionally, tool recommendations and templates for ongoing risk management and monitoring will be suggested
​
​
*Products may be recommended to assist you in risk management and security such as DLP, SIEM, XDR etc. but are optional and not supplied by ISOforSchools
7
Audit and Compliance
​​
-
By following the workflow, you will have automatically completed t0 "internal audit" level by satisfying the requirements of each step of the process. Our consultants can also be available for a review as necessary as well as annually or as requested to ensure ongoing compliance with ISO 27001
-
They can also provide recommendations for corrective actions based on audit findings
8
Continuous Improvement
​
-
Part 2 of the Workflow will assist you step by step again to conduct management reviews to evaluate the effectiveness of the ISMS
-
It will also continue to support the school in maintaining ISO 27001 certification through regular reviews and updates
Further Reading
Securing Our Future
"Securing Our Future" is a comprehensive guide that helps high schools navigate the process of obtaining ISO 27001 certification for their information security management systems (ISMS).
The book begins with an introduction to ISO 27001, outlining its purpose, scope, and certification process. It then moves on to demonstrate how to build a strong business case for certification, identifying stakeholders, assessing the current state of information security, and presenting the benefits and costs associated with certification.
About the Author:
Nick Beaugeard is a highly accomplished technology leader with over two decades of experience in the IT industry. Nick is a Microsoft Certified Professional and has been honored with numerous awards, including Software Developer of the Year in 2014 and ISV of the Year in 2017.
He currently serves as the Consulting Principal at Released and his expertise spans various industries, including education, finance, energy, and software development.
-
This looks great, but how exactly does this work?With our unique workflow and "Theme" based agile platform, we have built the capability to provide you with every document you need, customised for your school to take you to certification. Using a "Themed Sprint" means you can focus on achieving outcomes in smaller more manageable pieces. The platform also drives the outcomes of required documents based on your individual school requirements - rather than trying the opposite way to "shoehorn" standard templates into your environment.
-
What do you mean by "Theme"?Rather than work through every control step by step in the old waterfall fashioned way, we have intuitively grouped controls into "Themes". You just work your way through the Themes. These Themes become a "Sprint" in Agile terminology. We then ask you a series of questions relating to that theme and build you specific policies and other documents based on your input.
-
So what is the benefit of doing it this way?Firstly, being an Agile method, you are not restricted to work through each control systematically. These sprints are also much shorter in duration to achieve results than working through massive documents in the old way - and you will be able to track your overall progress by the status bar on the dashboard. Additionally, someone else could be more appropriate to drive another theme so you can assign them to that Theme when you are ready to work on it.
-
How many themes are there and how long will it take?This will be specific to your school, however up to 18 themes (and the initial Admin theme) may be required to be addressed. Typically, we have found there is between 5 and 40 hours work per theme or sprint to complete. The best part is that you can schedule a sprint on a monthly basis knowing approximately the effort required to achieve that themed sprint.
-
I've heard that achieving ISO 27001 can be quite expensive. How is it that your platform offers so much for so little?Working in education ourselves, we are passionate about elevating security and best practice in education globally. We know Schools do not have a bottomless bucket of money to spend on "back office" tools as they are focused on driving pedagogical outcomes. We believe that if Schools can at least start on a Security journey given all of the information they hold, they will be in a much better place!
To request a free Business Case, customised for your School, please fill in your brief details below.
Or email us directly for any further information or questions at support@isoforschools.com