ISO 27001

Our experience in IT GRC consultancy spans banking, telecommunications, oil and gas servicing and government agencies in Africa, establishing our firm as a clear leader in Information Security Management Systems design.


In today’s fast-paced world we depend on IT systems. The convergence of information systems, multiple modes of business transactions in the cyberspace and communication systems has got the attention of miscreants and criminals (individuals and/or organizations).

These entities use old and existing attack tools and techniques to cause system and infrastructure failures, outright destruction of virtual and physical assets and reputational damage.

An effective way to confront all the risks organizations are exposed to involves a combination of strategies that include:

  • Implementation of information security best practice standards
  • State-of-the-art Technology solutions to protect stakeholders from security attacks
  • Enterprise wide Information Security Awareness to educate stakeholders on prevalent risks, mitigative and preventive measures.


Digital Jewels key service offerings comprise of:

  • ISMS Training
  • Facilitation of hands-on ISMS awareness sessions
  • Information Security Assessments
  • Cybersecurity Assessments
  • ISMS development
  • Vulnerability Assessment and Penetration Testing
  • Risk assessments
  • Provision of quality assurance over the implementation of Risk Treatment Plans.
  • Development, execution and evaluation of compliance tests
  • Information Security Certification (ISO27001 Certification assistance)


Leader: The Firm is certified to the ISO27001:2013 (Information Security Management System) and ISO9001:2015 (Quality Management System) standards and is a Qualified Security Assessor for the Payment Card Industry Data Security Standard (PCIDSS QSA). This makes it the only such professional services Firm in Africa to be so accredited.

Track Record: We have helped numerous clients attain ISO 27001 certification. Our Information Security Practice comprises of ISO 27001 Lead Implementers, ISO 27001 Lead Auditors, Lead Cyber Security managers (ISO 27032), CISSP, CISA, CISM and CRISC certified professionals who have helped organizations develop Information Security capabilities and programs, kindly explore our industry experience here…

Proven Solutions: we can meet any length of organizational Information Security requirement with our strengthened range of service offerings.

Expert Knowledge and Skills: Our team has a solid understanding of ISMS specific regulations, industry guidelines and trends, and prides itself on the ongoing enhancement of security and resilience solutions in line with the changing profile of global risks.

Multidisciplinary team: Our ISMS team leverages on the multi-disciplinary skills of the entire organization and offers an all-encompassing service


Our approach leads to cost effective outcomes. We have designed our framework to be flexible, so we can tailor our approach to meet your needs. We will get to know your organization and consider the current ISMS capabilities and business processes before making any recommendations.