You are on    Homepage Certification

ISO/IEC 27001:2022 - Information Security Management

Information for download in pdf Information material SO 27001

Information Security Management System - Requirements

Due to ever increasing customers' demands on information security in organisations the international standard for information security management system ISO/IEC 27001 was elaborated and subsequently used for certification by a third party.

The basic standards of the information security management system are divided into:

  • ISO/IEC 27002:2022 Information technology Security - techniques - Code of practice for information security controls
  • ISO/IEC 27001:2022 Information technology - Security techniques - Information security management systems - Requirements

Information security and the ISO/IEC 27001 standard do not concern information technologies only. Like quality management systems, environmental management systems or occupational health and safety systems, the information security management system includes management, policy, organization as well as regular reviews.

Benefits of certification of the information security management system according to ISO/IEC 27001:2022

  • Information security is an integral part of the organisation's whole management system
  • The main factors affecting competition in business, information and its security are in a controlled mode
  • Reliability of the system is supported by back-up systems
  • Employees are responsible for information security of their workplaces as well as of their customers
  • A requirement for a continual improvement guarantees an efficient control of costs in the long run

Since criteria for this certification are generally not known, for the time being the certification may also proceed in the form of a number of situation audits linked to each other, which are simultaneously a preparation and training for an organisation, particularly in the areas as follows:

  • Analysis of value of own property in the area of information technologies
  • Risk analysis in relation to information
  • Information risk management

A part of the training is also a training in risk analysis and risk management, development of a Statement on assurance of security of information and other procedures.

Offer of CQS services

  • Situation audits
  • Certification audits (two-stepped), recertification audits
  • Audits conducted in the English, German or Russian languages
  • CQS certificates and IQNET international certificates

Application for certification

Application for certification of the system ISO 27001 in MS WordApplication for certification of ISO 27001



License for using of certification marks CQS and IQNET in pdf License for using of certification marks

Criteria for using of certification marks CQS and IQNET in pdf Criteria for using of certification marks

Inquiry form

Company's name
Address (street, postal code, town)
Contact person*
Branch of business
Total number of employees
Number of employees in the certified system
Number of affiliated companies
Certification standard
 ISO 45001
 ISO 9001
 ISO 50001
 ISO 14001
 ISO 27001
 ISO 13485
 ISO 20000-1
 ISO 22000
 ISO 3834-2
 IATF 16949
 ISO 22301
 ISO 17660-1
Status in preparation for certification
 Start of preparation
 Trial operation of the system
Required certification date

Please fill in the text displayed in the picture:

* Thus marked field is required.


CQS members

Electrotechnical testing institute Technical and Test Institute for Construction Prague Institute for testing and certification Textile testing institute Physical-Technical Testing Institute Engineering Test Institute

RSS channel  |  XML Sitemap  |  Sitemap  |  Content Management System WebRedakce - NETservis s.r.o. © 2024

© CQS 2010