When you submit an enquiry via our website, we use the personal data you supply to respond to your query, including providing you with any requested information about our products and services. We may also email you several times after your enquiry in order to follow up on your interest and ensure that we have answered your it to your satisfaction. We will do this based on our legitimate interest in providing accurate information prior to a sale. Your enquiry is stored and processed as an email which is hosted by Microsoft within the European Economic Area (EEA). We keep enquiry emails for two years, after which they are securely archived and kept for seven years, when we delete them.
DotSec is a professional cyber security organisation based in Brisbane, Australia. Founded in 2000, they have assisted several national and international clients with their cyber and information security compliance.
Tim Redhead, DotSec’s Director, shares why they choose CertiKit’s toolkits to help their clients develop successful Information Security Management Systems and certify to the ISO/IEC 27001 standard.
Since 2021, DotSec has used CertiKit’s ISO/IEC 27001 toolkits with several clients to help them meet their information security goals. DotSec’s clients choose to achieve ISO/IEC 27001 certification in order to improve their overall level of cyber security and to demonstrate this to stakeholders.
The toolkits allow DotSec to offer an efficient consultancy service, often helping clients to achieve certification in less than 12 months.
Several options were considered before deciding on the CertiKit toolkit as the most suitable solution, including toolkits and frameworks that had been previously purchased from other toolkit providers.
The CertiKit toolkit is now the toolkit of choice for DotSec because of the quality and completeness of the template documents and guidance. Tim adds, “It makes a big difference, for the better, when the implementer does not need to second guess and double check every template and guidance document.”
The CertiKit webinars also provide significant additional value (providing context and explanation) for the DotSec team.
One of the main challenges for DotSec when working with clients has been demonstrating that ISO/IEC 27001 success is not solely an IT task, and that business processes and structures will likely need to change in order to achieve certification.
The structured folders, templates and guidance within the CertiKit toolkit help confirm what is required of the standard, and of the clients, in order to achieve their compliance objectives.
The CertiKit toolkits have been used to successfully help clients certify to the standard, and DotSec will continue to use them with clients who want to make improvements to their cyber security and demonstrate this with an ISO/IEC 27001 certification.
DotSec is also using a toolkit for their own organisation’s certification which they are looking to complete within the next few months.
(Case study published on 2nd November 2023)