Practical, Cost Effective and award-winning

Business Continuity, Crisis Management & Information Security Solutions


0800 035 1231 (Mon to Fri 9am – 5pm)

Suite 3, The Cotton Mill, Torr Vale Mills, New Mills, Derbyshire, SK22 4HS, UK

ISO 27001

Numerous high-profile incidents, involving both malicious attacks and simple accidental data loss, serve to illustrate the importance of good IT security; and ISO 27001 – Information Technology – Security Techniques – Information Security Management Systems – Requirements (2013)  has proven extremely popular.  There has been continued growth in ISO 27001 certifications, as reported in 2015, with a 7% increase globally , to nearly 24 000; and an 18% increase in the UK to 2261.  Information technology remains by far the largest industry sector for certifications.


Cambridge Risk Solutions provides assistance to organisations seeking to achieve or maintain certification to ISO 27001.  As with ISO 22301, our services include gap analysis, development of management systems and delivery of internal audits, as well as training to ensure that you have the capability to be able to manage your Information Security Management System (ISMS).

Since the publication of ISO 22301 in 2012 and ISO 27001 in 2013, the benefits to organisations of integrating their IT security and business continuity management systems have become very clear; and by offering consultancy support for both standards we can help clients to achieve this.

Get In Touch

We are always happy to answer any questions you may have, please either contact us by telephone, or by filling in the form below.

Please ensure that you do not divulge any sensitive data as this webpage is not secure.

When we decided to go for accreditation to BS25999, we knew we would need outside help. We chose Cambridge Risk because they represented the best balance of professionalism and pragmatism.

more testimonials

  • Business Continuity Planning

    Effective planning that takes into account risk evaluation and business impact analysis, supported by clear and concise crisis management. We work with you to develop user-friendly plans.

  • Business Impact Analysis

    The Business Impact Analysis (BIA) is one of the most important, and least well understood, stages of the Business Continuity Management Lifecycle; we can assist with your BIA.

  • Training and Exercising

    No Business Continuity Management programme is effective without a significant element of training. Moreover, ongoing Crisis Management training and exercising is key. We can provide objective training and exercising.

  • Risk Evaluation and Control

    Risk evaluation and treatment provide a process to identify, prioritise and managing your risks. Cambridge Risk Solutions can assist with risk management for business operational and information security risks.

  • Statement of Applicability

    Which controls do you need to have in place? How do you link your risk assessment process into your SoA? How do you ensure that you have effective controls in place? We can assist with your SoA.

  • Integrated Management Systems

    Management Systems assist with your on-going management, maintenance and continual improvement. We work with you to develop a fully integrated management system, enabling certification to ISO 22301 and ISO 27001.