ISO 27001 Consulting Service

We support companies as well as organizations in designing, implementing, and certifying a robust and effective Information Security Management System (ISMS) along the ISO 27001 certification requirements. Our security experts will accompany your security staff throughout the entire design, implementation and certification process. Since ISO 27001 is a good basis but no guarantee for information security, Bosen AG also offers tools for creating an appropriate environment in order to reach the highest system effectiveness.


Basic Service

Design of ISMS Strategy

ISMS Scope Determination & Optimization

Risk Assessment

ISMS Gap Assessment

Security Controls Gap Assessment

Gap Remediation Facilitation / Support

Security Metrics

ISO 27001 Concept

ISO 27001 Security Plus

The ISO 27001 compliance certificate gives assurance only that a management system for ISMS is in place. It does not provide a report on information security controls within the organization. Thus ISO 27001 is a good and necessary stating point. In order to take all potential threats and shortcomings into account our Security Plus approach pays particular attention to technical levels as well as social engineering attacks.

Analysis of technical set-up (Hardware & Software)

Technical Implementation of security measures

Effective deployment of technological instruments according to an individual threat scenario

Effective information security education and awareness

Our Approach