Services
Leave A Mark offers a wide range of special services in addition to full implementation in connection with ISO 27001 / ISO 27701 and GDPR. The most commonly used services are listed below.
Leave A Mark Consulting Group can handle your compliance tasks so you can concentrate on your core business areas.
We have extensive experience with auditing and can handle the entire process until a certification is secured. We have specialists in the following area, privacy and information security, ISO 27701 / ISO 27701 (GDPR) Miscellaneous PCI standards and IT security.
In many cases, we can carry out compliance support "Remote", which means a further reduction in the cost, compared to onsite.
Leave A Mark Consulting Group has extensive experience in developing risk management policies and template, which can easily be used on a daily basis in the company.
We have expertise throughout the whole process from defining the company's risk appetite, risk analysis incl. DIPA analysis, as well as ongoing follow-up. We typically work based on the risk standards ISO 31000 and ISO 27005, which are internationally recognized risk standards.
By using a light and clear model for risk handling, the company's management is able to quickly make the correct choices based on a risk perspective.
En af de store udfordringer som man står med som virksomhed er egen kontrol af underleverandører. Både ISO27001 og GDPR tilsiger at man skal sikre sig at ens underleverandører lever op til de krav som man stille til dem.
Ved GDPR har man en databehandleraftale som giver instrukserne til databehandleren, men det er stadig dig som dataansvarlig der har pligten til at sikre at databehandleren lever op til kravene i databehandleraftalen. Dette kan typisk gøres ved kræve dokumentation i form af en ISO27001 certificering / ISAE3000 (GDPR) erklæring eller en fysisk kontrol af databehandleren.
Leave A Mark can often with an economic advantage do the controling of subcontractors / data processors.
Har du brug for hjælp i forbindelse med besvarelse af et udbud/tender mv. kan Leave a Mark være behjælpelig med besvarelsen af de områder, der omhandler informationssikkerhed og GDPR.
In order to be considered for a tender. Especially for the public sector, you may often have to document that you meet ISO27001 or equivalent standard. This as can be sensible to get help from a thirdparty as this often requires you to know the extent of which to be documented.
If you need advise about what actions should be taken in relation to information security and what operational risk you face, please do contact us. Leave a mark has great experience in advising in this area.
We often see that the company's business strategy does not include a strategy for information security, or that you have not assessed the risk appetite you want for different areas, all something that helps strengthen and secure the robustness of a business.