External information security officer

Do I need an external consultant to implement an ISMS?

The standards presented offer the possibility of implementing an ISMS on your own - possibly with the support of specialist literature.
An external consultant is certainly a good choice if companies and organisations are aiming for certification.

Good external consultants have the ability to distinguish the essential from the less important. With this characteristic, they can moderate and organise the entire process (establishment and operation of an ISMS) in a target-oriented manner.

These are the advantages of an external security officer:

• independent and objective advice
• experience and expertise (always up to date)
• risk minimisation through risk reduction