Get expert cyber help attaining ISO 27001:2022 certification

We have 10+ years’ experience helping organisations attain and maintain ISO 27001 certification. We also have a 100% success rate; every client we’ve helped has achieved certification first time. We’re so confident, we guarantee results.

Internal Audits

We assess your organisation’s Information Security Management System (ISMS) against the ISO 27001 standard and deliver an internal audit report detailing your state of conformance, i.e. where you are meeting ISO 27001 standards and where you are not.

Implementation

We guide your organisation through establishing controls, processes, documentation, and operational management to align to ISO 27001. We can pick up the implementation at any stage of the process and guarantee the result of attaining certification.

Staying Certified

We provide guidance and support to ensure you continue meeting ISO 27001 standards post-certification. This includes monthly support, Steering Committee meetings, and internal auditing in the surveillance years. Bespoke support plans are also available

All-in-One Journey (10% OFF)

This 3-year package includes: a gap assessment, ISMS implementation, a pre-certification internal audit, annual internal audits, monthly operation of your ISMS to support staying certified, and development of an information security assurance pack for sharing with stakeholders and clients.

"The biggest benefit to working with MyEmpire Group is having access to cyber expertise on an as-needed basis. We're able to access skills and knowledge across a broad range of [cyber security] areas, and without having to hire in-house."

Jenelle Schultz

Chief Operating Officer, Business Fitness

"The MyEmpire Group team’s technical understanding of Essential 8 and ability to cut through all the techno-speak and explain things to us in layman's terms made the process so much more streamlined."

Lisa Saunders

Group Executive – Governance Risk & Compliance, REI Superannuation

MyEmpire Group have been outstanding in helping us prepare for and obtain our ISO 27001 certification. Their personalised and considered approach to truly understanding our business needs really sets them apart.

Peter Bell

Co-Founder, Techno Global Team

Talk to an expert cyber specialist

The MyEmpire Group difference

"We’re big enough to support all manner of organisations, from ma and pa’s to enterprise, but small enough to still obsess over detail."

Our big difference at MyEmpire Group is how much we care about our clients. We don’t just pull out a template and change the name. Nor do we send our seniors to the first meetings then handball the work. We really invest in our clients and take the time to learn all the parts of your organisation.

Our steps to help your organisation with ISO 27001 certification

1. Get to know your business

We take time to really get to know your organisation—your people, processes, goals etc. We understand your systems and documentation, interview leaders in your company, run workshops to understand how the whole ecosystem links together.

2. Discovery

Once we have a thorough understanding of your organisation, our consultants will capture specific details of how cyber security is managed throughout your business. This is where we look at what your organisation has in place today in terms of cyber security compared to the requirements of the ISO 27001 standard. With this information, a tailored roadmap of implementation is formed.

3. Identifying the things that matter

Next our consultants will start to get very familiar with your risk management system. We address questions like what information assets does your organisation have? What are the threats to these assets? What are the vulnerabilities of these assets? What is the likelihood of each threat occurring? etc. This helps us develop a risk management plan tailored to your organisation’s specific needs.

4. Governance and documentation

Next, we set up an ISO 27001 governance framework that steers everything else in your cyber security practices. We’ll then work through all the documentation required for ISO 27001 certification. We tackle each topic to ensure we are not only ticking the compliance boxes for ISO 27001 but also building something that can be used to further protect your business in a worst-case scenario.

5. Training and transferring knowledge

We help with training your team and transferring knowledge to ensure everyone in your company is being brought along for the journey. We also help upskill the key operators of your management system to ensure they are confident maintaining the ongoing ISO 27001 policies.

6. Ongoing audits and cyber maintenance

Once certification is achieved, we can support your organisation with ongoing maintenance of your information security management system. This includes helping with evidence collection and policy updates, and conducting internal audits which are required to support ongoing maintenance of the ISO 27001 certification. It means you can get on with other things and be confident your organisation is cyber protected.

How We Work

Why get ISO 27001 Certified?

Improve your organisation's risk posture

ISO 27001 is a set of best practices for information security management. It provides organisations with a framework for identifying, assessing, and mitigating risks to their information assets. By implementing the controls recommended by ISO 27001, your organisation can reduce the likelihood of a security incident taking place and minimise the impact if an incident does take place.

Leadership Team

Alex Woerndle

CEO, CO-FOUNDER

Alex is an experienced director, IT consultant and infosec professional. He provides security management and leadership to a range of organisations from start-ups through to governments and ASX50 listed enterprises. He has also served over 10 years in voluntary roles as a Non-Executive Director of the Australian Information Security Association,.au Domain Administration Ltd and the Australian Conservation Foundation’s Finance, Audit and Risk Committee.

Carl Woerndle

MANAGING DIRECTOR, CO-FOUNDER

Carl has more than three decades’ experience in IT, security and business leadership. Prior to MyEmpire Group, he and Alex built DistributeIT which held approx. 10% market share of .com.au domains. As well as a business owner and manager, Carl has worked as a Cyber Security Advisor consultant for Deloitte. He is a regular keynote speaker on cyber security.

Chris Self

COO

Chris is a highly experienced information security principal. He has worked as a senior cyber security consultant for KPMG, CQR Consulting (now part of CyberCX) and Deloitte. Prior to starting with MyEmpire Group, he was the Information Security Manager at Adelaide Airport where he led a full rebuild of the airport’s cyber security processes and infrastructure. Chris holds a master’s in information systems security and a number of information security certifications, including CISSP and CRISC.

Our Cyber SecuritySpecialists

We’re a team of seasoned cyber security specialists, all with niche expertise. We have specialists in cyber strategy, compliance, auditing, engineering, training and operations. It means you get access to the right specialist as and when you need them, and for less than the cost of a full-time specialist.