ISO 27018 GAP ANALYSIS

Protection of PII in the cloud

Want to protect your company from data privacy risks in a public cloud computing environment, meet compliance obligations and win new business? Our experienced ISO 27018 consultants can help.

Get a quote Other ISO standards

Your first step to compliance

Teamwork’s ISO 27018 Gap Analysis service utilises pragmatic, business-focused methods. Our consultants help clients, partners, and stakeholders benchmark their systems against best practices, a vital step toward ISO 27018 certification. Our approach involves interviews with key personnel to assess your current compliance with the required standards.

Why is Gap Analysis important?

A gap analysis is a key stepping stone in achieving ISO 27018 certification. Following Gap Analysis, we generate a detailed and comprehensive report for your senior management team. This report succinctly highlights your areas of compliance with ISO 27018 requirements and more importantly, identifies the gaps. We accompany this with actionable recommendations and a realistic timeline for achieving ISO 27018 UKAS accredited certification.

Teamwork's Gap Analysis Process

Interview

We compare your current processes against data privacy and cloud security best practice.

Documentation

We will conduct a review of your public cloud computing documentation, establishing alignment with current practices.

Gap Report

We create a detailed report, presentation and plan with actions, ownership, and timelines.

Implementation

Utilising your action plan, we can either provide consultancy support through to certification or you can implement independently.

Interview

Teamwork’s high-level ISO 27018 Gap Analysis compares existing core processes, practices and documentation with the requirements of the ISO 27018 standard, and other ISO standards if applicable. It identifies where the organisation meets the requirements of ISO 27018 and where there are gaps.

Documentation

During the ISO 27018 Gap Analysis, a high-level review of your existing information security documentation is carried out to establish whether or not it is appropriate and reflects current practice. Any changes required to support improvements in line with best practice and the requirements of ISO 27018 are identified.

Analysis

Once we have completed the ISO 27018 Gap Analysis we prepare a detailed report and present the results to your project team. The report will clearly identify where you are meeting the requirements. It will also pinpoint gaps, with the actions you need to take to fill them and a realistic timescale in which ISO 27018 certification can be achieved.

Implementation

Teamwork will work with you to prepare a comprehensive project plan covering the subsequent stages of the ISO 27018 implementation programme. This will include details of project actions, ownership and timescales, and will form part of a Continuous Improvement Plan (CIP). This would be maintained up to and beyond ISO 27018 assessment and would be continually updated and developed as a business management tool.

Continued Support

For organisations already certified to ISO 27018, discover how we can assist in maintaining and enhancing your existing management system.

Managed Service

FAQs

Can we get a quote for implementation support before completing the gap analysis?

Yes. We have extensive experience in implementing ISO 27018 and can offer a fixed price for providing consultancy support for a full implementation programme.

How much will the independent assessment cost?

Please give us a call and we can advise. We handle wide-ranging quotes from UKAS-accredited certification bodies for organisations of all shapes and sizes. We can use this information to confidently advise you of the potential cost for your organisation.