Frameworks
Cyber Essentials
Cyber Essentials is a government-endorsed program that offers simple and effective ways to protect your organisation, no matter its size, from common cyber attacks. It serves as a promise to potential new clients that you have cyber security measures in place, making your business more attractive to new customers.
Cyber Essentials Plus
Cyber Essentials Plus helps organisations guard against the most common cyber threats and demonstrates their commitment to cyber security. It’s a framework that examines controls such as your access control, firewalls etc. The certification is only achieved when the essential levels of protection are assessed and passed by an independent IASME Certification Body such as Cognisys.
ISO 27001
ISO 27001 is the international standard for Information Security Management Systems (ISMS). The ISO 27001 certification also sets the global benchmark for a risk-based approach to cyber security management. It establishes a comprehensive framework to ensure effective information security, cyber security, and privacy protection.
ISO 42001
Achieving ISO 42001 certification signals to customers, partners, and stakeholders that your organisation adheres to high standards of AI governance and ethical practices, enhancing your overall reputation and trustworthiness. Following ISO 42001 guidelines, you can systematically identify and address potential risks in your AI processes.
SOC 2
SOC 2 is the gold standard for security for growing SaaS companies. Achieving your SOC 2 certification shows that your company can keep customer and client data safe. It also helps your company attract new business and maintain existing clients. SOC 2 certification demonstrates your commitment to data security, boosting trust among clients, partners, and stakeholders.
USDP
Vanta’s US Data Privacy framework is a comprehensive solution for complying with consumer data privacy laws across the United States. It provides all the necessary tools to ensure compliance with state-level consumer privacy laws by encompassing all state privacy laws with one comprehensive set of controls. Through leveraging Vanta’s automated compliance platform, you’ll have continuous monitoring to remain USDP compliant all year long.
GDPR
The General Data Protection Regulation (GDPR) safeguards the personal data and privacy of individuals in the EU and UK. Its main goal is to improve and standardise data protection regulations across EU member states, and to govern the transfer of personal data outside the EU and European Economic Area (EEA).
HIPAA
HIPAA compliance ensures businesses that access, process, or store protected health information follow best practices for keeping this highly sensitive data secure. Companies handling protected health information (PHI) are required to implement and adhere to physical, network, and procedural security safeguards to maintain compliance with HIPAA regulations. Covered entities, which encompass entities involved in healthcare treatment, payment, and operations, must ensure strict adherence to these security measures.
NIST AI Risk Management Framework
This framework demonstrates your company’s dedication to reducing AI-related risks. It’s designed for voluntary adoption, aiming to enhance the integration of trustworthiness factors into the design, creation, implementation, and assessment of AI products, services, and systems. It serves as a versatile tool for companies to create and oversee AI solutions that are reliable and ethically responsible.
Let’s make things happen
Fill in the form and one of our team will be in touch for a no-obligation discussion or quote regarding your requirements.
info@cognisys.co.uk
Leeds office
5 Park Place
Leeds
LS1 2RU
info@cognisys.co.uk
London office
131 Finsbury Pavement
London
EC2A 1NT
