Skip to content
PYR-00

ISO 27001:2022 Certification Support.

Gap analysis, ISMS build, internal audit, and Stage 1/Stage 2 audit support for UK regulated SMEs.

Book a security review
PYR-01

The approach

Four stages from zero controls to certification body ready. Each stage produces the evidence artefacts your auditor will expect.

01

Gap assessment

We map your existing controls against ISO 27001:2022 Annex A. You receive a prioritised gap register with estimated effort per control.

02

ISMS build

We build your Information Security Management System: scope, policy framework, risk register, Statement of Applicability, and asset inventory.

03

Internal audit

We conduct a full internal audit against your ISMS, identifying findings before the certification body sees them. Remediation plan included.

04

Certification support

We support you through Stage 1 (documentation review) and Stage 2 (implementation audit) with the certification body.

PYR-02

Who it is for

Regulated UK SMEs with 20–200 employees who need ISO 27001 certification for client, regulatory, or tender requirements. We work with organisations at any stage — from no ISMS at all to an existing system needing certification-readiness work.

Our clients are primarily UK-regulated with operations in the UK and EU, supported by DORA compliance requirements. We also support multi-national engagements where your compliance obligations span additional jurisdictions.

PYR-03

What you receive

ISO-01

Gap analysis report

Complete mapping of current posture against ISO 27001:2022 Annex A controls. Prioritised by effort and risk.

ISO-02

ISMS documentation set

Policy framework, risk register, Statement of Applicability, asset inventory, and supporting procedures.

ISO-03

Internal audit report

Independent internal audit with findings, severity ratings, and remediation plan.

ISO-04

Stage 1 and Stage 2 support

Practitioner support during certification body audits, including evidence preparation and corrective action planning.

ISO-05

Post-certification maintenance

Ongoing ISMS maintenance, internal audit cycles, and surveillance audit support available via retainer.

ISO 27001:2022CISM · CISA · CC£5,000,000 Professional IndemnityVaries by current posture
PYR-CTA

Need ISO 27001 certification support?

Book a free 30-minute security review. We will scope your gap to certification and give you one specific recommendation you can action immediately.

Book a security review