Chris has over 30 years’ experience of implementation and audit services covering information security (ISO 27001), business continuity (ISO 22301), audit (internal, ISAE3402, SOC 1, SOC 2), risk (IT and information security) and training. He was previously a senior manager within a top 4 accountancy firm and whilst there he was the Head of Certification services for ISO 27001 and ISO 22301 certifications undertaken worldwide. He is an ISO 27001 and ISO 22301 Lead Auditor.
He now runs his own company which works with organisations around the world helping them implement ISO 27001 and ISO 22301 quickly and simply. He also delivers training courses in ISO 27001 (including the 5-day lead auditor course), ISO 22301 and risk management. His speciality is implementing ISO 27001 very quickly and simply into organisations that have tight deadlines and limited experience of ISO 27001. This includes working closely with service providers (e.g. Cloud) and organisations using Cloud services and has helped many such companies achieve ISO 27001 certification. He has also worked with service providers to successfully implement ISAE 3402/SOC 2 in conjunction with ISO 27001 certification. He is on the UK ISO committee that helps develop and manage the ISO27K series of standards. He is passionate about the need to adopt simple approaches to the implementation and use of ISO 27001 and achieving ISO 27001 using minimal overheads and documentation.