Your Partner in Excellence and Certification

We have designed and aligned our certification services to meet the applicable standards such as the ISO 17021 and other relevant standards set by internationally-recognized bodies. Our objective is to provide you with first-class services that deliver real benefits to your organization.

FEATURED CLIENTS

Certification Process

Application

Complete the Certification Application Form in order for us to understand your company, the complexity, and requirements when preparing the proposal of certification.

Pre-assessment (optional)

Determine the degree of your organization’s management system(s) against the requirements of a standard.

Initial Certification

Conduct of Stage 1 and Stage 2 audits. The Stage 1 audit is a preliminary assessment to evaluate the organization’s readiness for ISO certification. The Stage 2 audit is a comprehensive audit to verify the implementation and effectiveness of the management system, ensuring compliance with standards requirements.

Surveillance Audits

Conduct of periodic assessments to ensure the ongoing compliance, effectiveness, and continual improvement of the organization’s management system.

Looking into a Certification Transfer?

Understand the process of transferring an existing ISO certification from one certification body to another.

Testimonials

"We feel that CPSI Certifications is working with us during the whole process. I'm very satisfied."

"Something as crucial as ISO requires an auditor who understands how a business is run and can explain things clearly so that we can continue to learn and have continuous development and improvement of all our processes and procedures. They were highly professional, courteous, and clear in his explanations, and I would have no hesitation in recommending him and CPSI Certifications."

CPSI Certifications is our second company that we have used for our ISO audit. They are much more understanding of our unique situation, and take how we operate into account when conducting the audit. Both auditors were very professional in very aspect. I would not hesitate to recommend them!"

"CPSI Certifications were extremely thorough and professional and really embodied the type of partnership that we were looking for in our ISO audit."

FAQs

How can we transition to ISO/IEC 27001:2022 ISMS?

The ISO/IEC 27001:2022 Information Security Management Systems (ISMS) was published on October 25th 2022 which is set to replace the 2013 version of the standard within a 3-year transition period ending on October 31st 2025. Kindly refer to the timeline below for your guidance:

ISO/IEC 27001:2022 Timeline

25th October 2022 – ISO/IEC 27001:2022 Release date
31st October 2022 – Transition period begins for certified organizations
31st July 2025 – All transition audits should be conducted by this date.
31st October 2025 – Transition period ends. Certificates for ISO/IEC 27001:2013 will no longer be valid after this date.

The transition audit shall not only rely on the document review, especially for reviewing the technological information
security controls. The transition audit shall include, but not be limited to the following:

The gap analysis of ISO/IEC 27001:2022, as well as the need for changes to the client’s ISMS.
The updating of the statement of applicability (SoA).
If applicable, the updating of the risk treatment plan.
The implementation and effectiveness of the new or changed information security controls chosen by the clients.

Transition Duration

Minimum of 0.5 auditor day for the transition audit when it is carried out in conjunction with a recertification audit.
Minimum of 1.0 auditor day for the transition audit when it is carried out in conjunction with a surveillance audit or as a
separate audit.

Transition audit durations will depend on the organization’s scope, size, and the complexity of the ISMS. The CPSI
Certifications’ team will advise your organization of your specific transition audit duration.

When the certification document is updated because the client successfully completed only the transition audit, the
expiration of its current certification cycle will not be changed.

Revised ISO 27001:2022 Certificates and Validity

Transition during surveillance – The organization’s existing ‘Certification Expiry Date’ will be maintained.
Transition during reassessment – A new ‘Certification Expiry Date’ will be issued for the renewed 3 year period.
Stand-alone transition – The organization’s existing ‘Certification Expiry Date’ will be maintained.

The CPSI Certifications team is here to support you throughout the transition process. If you have any questions or need to speak to our team regarding your transition, please do not hesitate to contact us.

What are the standards or schemes that you offer?

ISO/IEC 27001:2022 Information Security
The International Standard for Information Security Management Systems.

ISO 9001:2015 Quality
The International Standard for Quality Management Systems.

ISO/IEC 27701:2019 Privacy
The International Standard for Privacy Information Management Systems.

ISO/IEC 27017:2015 Cloud
The International Standard for Cloud Service Providers.

ISO/IEC 27018:2015 PII
The International Standard for the PII in public clouds acting as PII processors

How long is ISO certification valid?

ISO certificate remains valid for three years. This validity is maintained through surveillance audits and a full system audit during the recertification audit.

Can ISO certification be transferred between certification bodies?

A valid ISO Certification can be transferred to CPSI Certifications at any point of your certification cycle. Our transfer process is straightforward and our team will guide you the entire time to avoid disruptions on your certification.

About Us

CPSI Certifications is your trusted partner in achieving excellence through ISO certifications.

With a team of skilled auditors and a customer-centric approach, we provide globally recognized certifications for businesses of all sizes and industries.