What is the IASME Governance Standard?

Information Assurance for Small and Medium Enterprises (IASME) is an Information Assurance Standard managed by the IASME Consortium. The IASME Governance Standard was developed over several years during a government funded project to create a cyber security standard which would be an affordable and achievable alternative to the international standard, ISO 27001.

​

This IASME Governance Standard is a risk-based standard covering the following areas:

• Organisation

• Risk Management

• Policy & Compliance

• Asset Management

• Monitoring

• Access Control

• People

• Physical & Environmental

• Operations & Management

• Malware & Technical Intrusion

• Incident Management

• Backup and Restore

• Business Continuity & Disaster Recovery

​​

There are two levels of Certification, IASME Governance Self-Assessed and IASME Governance Audit (GOLD-Certified).

​

We are a Certification Body, trained and licensed to certify for the IASME Governance Standard. We also offer consulting services to help you achieve either IASME Governance Self-Assessed or IASME Governance Audited (IASME Gold) certification.