About De System

iso13485_certificate

De System is one of the leading quality certification organizations offering a plethora of quality certifications (management system & product both) services to organizations of all nature and size. We are in the same filed from last many years. We believe in upholding highest standards of business ethics with complete commitment to total quality.

We are a fast growing professional training organization for ISO 9001:2008 (QMS), ISO 14001:2004 (EMS) , ISO 22000:2005 (Food safety management system,FSMS), ISO 27001:2005( Information Security Management System, ISMS), OHSAS 18001:2007 (Occupational health and safety analysis system), ISO 13485 (Medical Devices), ISO 20000:2005 (ISMS), HACCP(Hazard analysis and critical control point) , SA 8000:2001(Social accountability standard), WRAP (Worldwide Responsible accredited Production), BSCI (Business Social Compliance Initiative), CE Marking, TS 16949 (QMS for Auto Mobile Industry), RoHS (Restriction of Hazardous Substances), BRC(British Retail Consortium), Eurepgap, C-TPAT ( Customs- trade partnership against terrorism), GMP (Good manufacturing practices), WHO GMP, FDA, CCC Mark, SIX SIGMA, Kaizen, CMMI, ISI, SSI, Factory Compliance etc. We provide iso certification & training in the most effective, economical, time bound and easy to implement manner.


ISO 27001:2005 (Information Security Management System)

The ISO 27001 standard was published in October 2005, essentially replacing the old BS7799-2 standard. It is the specification for ISMS, an Information Security Management System. BS7799 itself was a long standing standard, first published in the nineties as a code of practice. ISO 27001 enhanced the content of BS7799-2 and harmonized it with other standards. A scheme has been introduced by various certification bodies for conversion from BS7799 certification to ISO27001 certification. .

ISO 27001, titled "Information Security Management - Specification With Guidance for Use", is the replacement for the original document, BS7799-2. It is intended to provide the foundation for third party audit, and is 'harmonized' with other management standards, such as ISO 9001 and ISO 14001.

How to implement ISO 27001:2005?

• Get management support
• Define ISMS scope
• Inventory your information assets
• Conduct an information security risk assessment.
• Prepare a Risk Treatment Plan
• Develop ISMS implementation program
• Run the ISMS implementation program
• Operate the ISMS
• Collect ISMS operational artefacts
• Conduct a pre-certification assessment "Conformity Audit"
• Certification audit