Client Certification Information
In order to help provide the most accurate information please provide the information requested below. This will allow us to better understand and align the best fit of people and information for you.
Company Name
*
Audit Type
*
Please Select
Initial Certification
Surveillance Audit
Recertification
Change in Scope
Transfer Certification-Surveillance
Transfer Certification-Recertification
Organization Type(s)
*
SaaS
Software
Consulting Services
Cloud Services
IT Support
IoT/Telecom
Financial
Government Agency
Other
Certification Standard
*
ISO/IEC 27001:2022
Virtual Workforce
*
Yes
No
Referral Contact
Please Select
Alejandro O
Bhaumik S
Brad B
Donavan T
Joe H
Judy L
Kaley U
Lissette N
Mark A
Mike S
Raahsaan F
Ryan M
Scott H
Scott M
Tom M
Google Ads
Linkedin Ads
Website/other
Add-on
ISO/IEC 27017 Extension for Privacy for Cloud Services Code of Practice
ISO/IEC 27018 Extension for Privacy Related to PII Code of Practice
ISO/IEC 27701:2019 Privacy Information Management (Controller)
ISO/IEC 27701:2019 Privacy Information Management (Processor)
Supplier Security and Privacy Assurance (SSPA) Third-party Attestation
Address for Certificate
*
Street
Street 2
City
State / Province
Postal / Zip Code
Please Select
Afghanistan
Albania
Algeria
American Samoa
Andorra
Angola
Anguilla
Antigua and Barbuda
Argentina
Armenia
Aruba
Australia
Austria
Azerbaijan
The Bahamas
Bahrain
Bangladesh
Barbados
Belarus
Belgium
Belize
Benin
Bermuda
Bhutan
Bolivia
Bosnia and Herzegovina
Botswana
Brazil
Brunei
Bulgaria
Burkina Faso
Burundi
Cambodia
Cameroon
Canada
Cape Verde
Cayman Islands
Central African Republic
Chad
Chile
China
Christmas Island
Cocos (Keeling) Islands
Colombia
Comoros
Congo
Cook Islands
Costa Rica
Cote d'Ivoire
Croatia
Cuba
Curaçao
Cyprus
Czech Republic
Democratic Republic of the Congo
Denmark
Djibouti
Dominica
Dominican Republic
Ecuador
Egypt
El Salvador
Equatorial Guinea
Eritrea
Estonia
Ethiopia
Falkland Islands
Faroe Islands
Fiji
Finland
France
French Polynesia
Gabon
The Gambia
Georgia
Germany
Ghana
Gibraltar
Greece
Greenland
Grenada
Guadeloupe
Guam
Guatemala
Guernsey
Guinea
Guinea-Bissau
Guyana
Haiti
Honduras
Hong Kong
Hungary
Iceland
India
Indonesia
Iran
Iraq
Ireland
Israel
Italy
Jamaica
Japan
Jersey
Jordan
Kazakhstan
Kenya
Kiribati
North Korea
South Korea
Kosovo
Kuwait
Kyrgyzstan
Laos
Latvia
Lebanon
Lesotho
Liberia
Libya
Liechtenstein
Lithuania
Luxembourg
Macau
Macedonia
Madagascar
Malawi
Malaysia
Maldives
Mali
Malta
Marshall Islands
Martinique
Mauritania
Mauritius
Mayotte
Mexico
Micronesia
Moldova
Monaco
Mongolia
Montenegro
Montserrat
Morocco
Mozambique
Myanmar
Nagorno-Karabakh
Namibia
Nauru
Nepal
Netherlands
Netherlands Antilles
New Caledonia
New Zealand
Nicaragua
Niger
Nigeria
Niue
Norfolk Island
Turkish Republic of Northern Cyprus
Northern Mariana
Norway
Oman
Pakistan
Palau
Palestine
Panama
Papua New Guinea
Paraguay
Peru
Philippines
Pitcairn Islands
Poland
Portugal
Puerto Rico
Qatar
Republic of the Congo
Romania
Russia
Rwanda
Saint Barthelemy
Saint Helena
Saint Kitts and Nevis
Saint Lucia
Saint Martin
Saint Pierre and Miquelon
Saint Vincent and the Grenadines
Samoa
San Marino
Sao Tome and Principe
Saudi Arabia
Senegal
Serbia
Seychelles
Sierra Leone
Singapore
Slovakia
Slovenia
Solomon Islands
Somalia
Somaliland
South Africa
South Ossetia
South Sudan
Spain
Sri Lanka
Sudan
Suriname
Svalbard
eSwatini
Sweden
Switzerland
Syria
Taiwan
Tajikistan
Tanzania
Thailand
Timor-Leste
Togo
Tokelau
Tonga
Transnistria Pridnestrovie
Trinidad and Tobago
Tristan da Cunha
Tunisia
Turkey
Turkmenistan
Turks and Caicos Islands
Tuvalu
Uganda
Ukraine
United Arab Emirates
United Kingdom
United States
Uruguay
Uzbekistan
Vanuatu
Vatican City
Venezuela
Vietnam
British Virgin Islands
Isle of Man
US Virgin Islands
Wallis and Futuna
Western Sahara
Yemen
Zambia
Zimbabwe
Other
Country
Scope Statement
*
The ISO 27001 scope statement appears on your ISO 27001 certificate for your customers to see. Scope example: The Information Security Management System (ISMS), in accordance with ISO/IEC 27001, supporting the confidentiality, integrity and availability of personal information, customer data, supplier information, and our client’s internal data related to software development, sales, project management, strategic guidance, and hosting of web and mobile applications.
Number of Locations in Scope of the ISMS
*
If you have indicated a virtual workforce, this should be 1 indicating the address used on the certificate.
Workers in Scope
*
We need to know the number of workers in scope of the certification to determine the appropriate number of days (this might not be all workers in the organization).
Please select the best description of the complexity of the ISMS
*
Please Select
Low sensitivity, confidentiality, and availability requirements
Moderate sensitivity, confidentiality, and availability requirements
High sensitivity, confidentiality, and availability requirements
Business and Customer information
*
Please Select
Has customers in critical business sectors
Works in critical business sectors
Works in non-critical business sectors
Critical business sectors include financial, public services/utilities or medical services. This is used to determine the impact and risks associated with your information security program.
Describe the current state of the management system operational maturity
*
Please Select
ISMS is newly established and operating for less than 3 months
ISMS has been operating for 3 to 12 months
ISMS is well established and in operation for more than 12 months
We need to understand the maturity level in order to guide the type of audit needed.
Select the best description of technology used
*
Please Select
Industry standard technologies used cloud-based services
Industry standard technologies with combination of on-premise and cloud-based services
Complex/proprietary technologies with diverse processes and on-premise platform
This is used to ensure we have qualified auditors who understand the technologies in place.
Indicate the level of outsourced services used
*
Please Select
No outsourcing for in-scope services
Some outsourcing arrangements for key business functions
High dependency on outsourcing or suppliers with large impact on important business activities
Please indicate the outsourcing arrangements used to deliver services in the scope of the ISMS
Describe your development activities
*
Please Select
None or very little internal development
Some internal development or highly customizable software used
Extensive internal software development activities
Please let us know the extend of your development activities in scope.
What are the availability requirements
*
Please Select
Low availability requirements - System availability is not critical
Moderate requirements achieved through redundancy or similar technology
High availability requirements with redundancy across geographical locations
Please let us know the availability requirements your system is working under.
Describe the changes that should be considered
*
Please Select
No recent changes/initial certification
Minor changes such as new processes or policy changes
Major changes such as scope, new business, new ownership
Please let us know about changes to the management system or organization that may have an impact.
Primary Language
*
Primary Language Spoken
Primary Language of Documentation
Name
*
First Name
Last Name
Email address
*
example@example.com
Phone Number
*
-
Country Code
-
Area Code
Phone Number
Anticipated Certification Date
-
Month
-
Day
Year
Date
Compliance Software
*
Please Select
No software / in-house solution
Drata
Secureframe
Sprinto
Thoropass
Vanta
Other
Other Services
ISO/IEC 27001 - Internal Audit
SOC 2 Attestation Reporting
Penetration Testing (Referral)
SSPA Third-party Attestation
Other
Please provide additional details we need to consider
Example: number of persons performing identical activities
If you did not use a consultant, please type "none", or if you did, please let us know the name of the consultant or the company name.
*
Understanding the consulting resources you are working with helps us remain impartial and independent in providing the certification services.
Attachment
Browse Files
Drag and drop files here
Choose a file
Cancel
of
Submit
Client Status
Special Rate
Legacy Id
Should be Empty: