ISO Management Systems
At Quira, our Consultants and Auditors have many years' proven success assisting organisations to achieve their compliance goals and objectives. There are many compelling reasons to consider implementing one or more management systems, including:

  • Ensuring your business is managed and operating efficiently, profitably and in line with stakeholder expectations

  • Reassurance that your business and information security risks are fully understood and properly managed

  • Allowing your business to compete in competitive situations such as tenders, where ISO certifications are mandatory

  • Differentiating your business from your competitors, and providing greater confidence to potential clients

We have extensive experience in delivering Quality Management Systems (to ISO9001), Environmental Management Systems (to ISO14001) and Information Security Management Systems (to ISO27001), amongst others. Two examples are provided below.

ISO9001 (Quality Management System)

The core elements of a Quality Management System (QMS) are understanding your clients' requirements, delivering effective products and/or services in an approved, consistent and reliable manner, ensuring an acceptable level of customer satisfaction, and striving for continual improvement in all areas included within your QMS. By providing knowledge, best practice and resources (including documentation), Quira will empower your organisation to develop a quality culture into the heart of your business.

Our ISO9001 implementation package includes:

  • Senior Management briefing of structure and implementation decisions

  • Definition of quality roles and responsibilities

  • Drafting and implementation of mandatory documentation

  • Drafting and implementation of organisation specific documentation

  • Guidance on establishing a suitable QMS process framework

  • Provision of staff quality training session and awareness assessment

  • Training of internal auditors (if required)

  • Provision or assistance in delivery of initial internal audits

  • Establishment of management review activities

  • Introduction to supplier management

  • Initiation of customer satisfaction activities

  • Preparation for external assessment

  • Engagement with LRQA as external assessor (Quira is a Gold Recognised Consultant)

  • Attendance during LRQA assessment (if requested)

  • Review of external assessment result

ISO27001 (Information Security Management System)

ISO27001 has become the most requested standard in recent years: high profile data breaches, equipment theft and legislative fines means that all organisations have become acutely aware of the need to protect their (and their clients') data. Building upon an active QMS, ISO27001 additionally requires the implementation and management of an effective risk assessment activity, and the measurement of the effectiveness of controls against identified vulnerabilities and threats. By providing knowledge, best practice and resources (including documentation), Quira will assist in ensuring that your approach to information security is of the highest quality, and suitable for external assessment against this internationally recognised standard.

Our ISO27001 implementation package, which follows this approach, includes:

  • Senior Management briefing of structure and implementation decisions

  • Definition of information security roles and responsibilities

  • Drafting and implementation of mandatory information security documentation

  • Drafting and implementation of organisation specific documentation

  • Creating and implementing an appropriate risk assessment methodology

  • Provision of staff information security training session and awareness assessment

  • Training of internal auditors (if required) and risk assessors

  • Provision or assistance in delivery of initial internal audits and risk assessments

  • Establishment of information security incident management activities

  • Understanding information security outside of your organisation

  • Establishment of management review activities for information security

  • Preparation of Statement of Applicability

  • Preparation for external assessment

  • Engagement with LRQA as external assessor (Quira is a Gold Recognised Consultant)

  • Attendance during LRQA assessment (if requested)

  • Review of external assessment result

Contact us by email for more information, or to arrange an informal assessment of your requirements without obligation.



 

 
   © Quira Limited, 2012. All Rights Reserved
  

Quira Limited, PO Box 1164, Guildford, Surrey GU1 9PN  Home