A minor nonconformity is a single or non-critical failure of the ISMS, whereas a major nonconformity is a more systematic or critical failure of a process or key elements of the management system. If your organisation is attempting to gain third-party certification, a major nonconformity may prevent this certification from being granted. However, once your organisation has achieved certification a finding of this nature may result in the suspension of your certification in certain circumstances.
related BLog
No items found.
"
It’s one thing having the required technical knowledge, it’s another thing for a consultant to apply that knowledge to the context of our organisation. To use a sporting analogy, we view cyber and information security as a marathon not a sprint. I am not a believer in doing everything all at once. Our approach has been risk based and incremental, remediating our biggest risks first before moving on. I believe this approach is far more sustainable and effective. And URM’s consultants fully understand this and are very pragmatic and tailored in their guidance and advice. They know we are not implementing ISO 27001 purely for the certificate, but more as a framework for continual improvement, and at a pace where new systems and processes can be fully understood and absorbed by our team and be business as usual.
The Owners and Distributors of Quality Brands
contact US
Let us help you
Let us help you in your compliance journey by completing the form and letting us know how we can best support you.