The IASME Governance standard was developed over several years during a government funded project to create a cyber security standard which would be an affordable and achievable alternative to the international standard, ISO27001.
The IASME Governance standard allows the small companies in a supply chain to demonstrate their level of cyber security for a realistic cost and indicates that they are taking good steps to properly protect their customers information.
The IASME Governance assessment includes a Cyber Essentials assessment and GDPR requirements and is available either as a self assessment or on-site audit.
IASME GOVERNANCE SELF ASSESSED
Based on international best practice, IASME Governance is risk based and includes key aspects of security such as incident response, staff training, planning and operations. IASME Governance incorporates Cyber Essentials assessment and an assessment against the General Data Protection Regulation (GDPR).
IASME GOVERNANCE AUDITED
The IASME Governance Audit involves an on-site audit of your governance processes and procedures covered by the IASME Governance standard. IASME Governance Audited is an independent on-site audit of the level of information security provided by your organisation. It offers a similar level of assurance to the internationally recognised ISO 27001 standard but is simpler and often cheaper for small and medium-sized organisations to implement.