risQera

ISO/IEC 27001 implementation, internal audit, and risk management support for growing organizations

risQera helps organizations build a practical ISMS, structure information security risk management, and prepare for ISO/IEC 27001 in a way that fits how the business actually operates.

WHO WE HELP

  • SMEs that need a more structured ISMS
  • SaaS and technology companies preparing for ISO/IEC 27001
  • Service providers handling sensitive business or client information
  • Organizations needing implementation, internal audit, or certification-readiness support

WHAT YOU GAIN

  • Clear scope, roles, and responsibilities
  • A usable risk assessment and treatment approach
  • Documentation aligned with ISO/IEC 27001 requirements
  • Evidence that is easier to present during audits
  • A more structured path toward certification readiness

OUR SERVICES

ISO/IEC 27001 Implementation Support

From gap assessment to documentation, rollout, and certification readiness.

Risk Assessment and Risk Treatment

Define criteria, assess risks, select treatments, and maintain a practical risk register.

Internal Audit Support

Prepare, perform, and follow up on internal audits with clear findings and corrective actions.

External Audit Preparation

Strengthen evidence, close gaps, and prepare confidently for certification audits.

ISMS Governance and Documentation

Build the core structure, responsibilities, policies, procedures, and records needed for a usable ISMS.

HOW WE WORK

Our approach follows a clear and structured path:

Assess

Understand your context, scope, constraints, and priorities.

Define

Set the roadmap, governance, and implementation priorities.

Build
Develop the key ISMS elements, documentation, and evidence.

Review
Check progress through internal review and gap validation.

Prepare
Support readiness for management review and certification audit.

TYPICAL DELIVERABLES

Depending on the engagement, clients typically receive:

  • Gap assessment report
  • ISMS implementation roadmap
  • Risk assessment methodology and risk register
  • Statement of Applicability
  • Core ISMS policies and procedures
  • Internal audit report and corrective action tracking

WHY risQera

  • Focused expertise in GRC and ISO/IEC 27001
  • Methodical and audit-aware approach
  • Clear communication with technical and non-technical stakeholders
  • Pragmatic delivery aligned with operational reality

FINAL CALL TO ACTION

Need support with ISO/IEC 27001 implementation, internal audit, or certification readiness?

Let’s discuss your priorities, current challenges, and the most practical next steps.

Book a free 30-minute consultation

ISO 27001 Support plans

Flexible monthly support for ISO/IEC 27001 implementation, internal audit, risk management, and certification preparation.

Essential – 4 hours per month

Ideal for small organizations needing focused guidance, document review, and support on specific ISO/IEC 27001 topics.

1 hour/Week

Price: 350 €

Standard – 8 hours per month

Suitable for organizations progressing steadily and needing regular support on documentation, risk treatment, follow-up, and coordination.

2 hours/week

Price: 660 €

Advanced – 12 hours per month

Designed for organizations needing broader hands-on support across implementation, documentation, risk treatment.

3 hours/week

Price: 930 €

Extended – 16 hours per month

Best for organizations with broader implementation needs, tighter deadlines, and more sustained support throughout each month.

4 hours/week

Price: 1160 €

Not sure which plan fits your needs? Let’s discuss your context and define the most suitable level of support.

Stay connected with risQera

Get practical insights on ISO/IEC 27001, governance, and security risk. Follow us on LinkedIn or subscribe to receive new articles when they are published.

Follow us on LinkedIn →

risQera
Governance, Risk & Compliance Advisory & Training

© 2026 risQera. All rights reserved.