Information Assurance

Black Spider Consulting’s Information Assurance services focus on working with organisations to allow them to understand their information risks and to apply appropriate risk treatments which can be measured and monitored over time.  Where an organisation has no established Information Security Management System (ISMS) in place, our information assurance practitioners will use tried and tested frameworks, standards and methodologies to give the business a set of policies and procedures that are appropriate to their size.


All businesses operate within a landscape of ever changing laws and regulations which they must comply with in order to survive.  Increasingly this is being extended into the supply chain where businesses must demonstrate compliance with standards to their customers, especially in the areas of information security.  Black Spider Consulting can advise and assist in the selection and implementation of policies, processes and technical controls to aid compliance with a variety of regulations and industry standards.


The EU General Data Protection Regulation comes into effect in May 2018. Many of the requirements can be met via the implementation of an ISMS. We provide advice and guidance on implementing controls for GDPR compliance.


The HM Government Security Policy Framework and associated National Cyber Security Centre guidance and standards. We are CESG (aka NCSC) certified and have extensive experience in working with public sector organisations. We can provide advice, implementation, and assessment services via Crown Commercial Services frameworks.


The Defence Cyber Protection Partnership is a joint MOD/Industry initiative tasked with improving the protection of the defence supply chain from cyber threat. The DCPP Cyber Security Model has requirements such as Cyber Essentials / Cyber Essentials PLUS and a selection of controls which would be covered by an ISMS such as IASME or ISO 27001. We provide advice, implementation, and assessment services to enable compliance with the DCPP requirements.

ISO/IEC 27001

The ISO/IEC 27000 family which includes the 27001 ISMS standard; we can advise on and assist in the implementation of an ISO 27001 ISMS.

IASME Governance

The Information Assurance for Small & Medium Enterprise standard enables a lightweight ISMS. IASME certification includes specific questions related to GDPR. We provide advice, implementation, assessment and certification services for the IASME standard.

Cyber Essentials

Cyber Essentials is Government back scheme designed to protect businesses against common cyber attacks. Cyber Essentials PLUS certification demonstrates that an independent assessor has tested that the controls have been implemented effectively. We provide advice, implementation, assessment, and certification services for Cyber Essentials.

IASME Certification Services

Black Spider offer the following services specific to certification against the IASME standard.

IASME Standard 
Requirements Workshop

If your organisation is starting from scratch or you are unsure that it would currently meet the standard, we offer an IASME Standard Requirements Workshop. This is designed to assess your organisation’s current approach to security risk management and any existing security processes, policies and controls to identify where there are gaps and to outline a high level roadmap for implementing the standard.

Get a Quote

IASME Self Assertion 

Unassisted Service

• Complete the IASME self-assessment questionnaire yourself via our secure portal

£450.00 + VAT

Buy Now

Remote Assisted Service

• Complete the questionnaire with the assistance of a Cyber Security specialist

• Communication available over the phone and/or interactive web session

£1000.00 + VAT

Buy Now

IASME Audited  

Become ISAME Gold certified by submitting to an audit of your ISMS against the IASME standard.

Get a Quote

Find Out More

Black Spider Consulting are certified under the IASME Gold and Cyber Essentials PLUS schemes, providing our customers with the greatest levels of cyber security and information assurance services available.

Contact us today to learn more about our cyber packages and discover how else we can assist in protecting your business.

The details entered into this contact form will be recorded in our customer relationship management system for the purposes of responding to your enquiry. By submitting these contact details you consent to being contacted by email or phone in relation to our services.

This will also be transferred to our Customer Relationship system, so if you contact us again in the future we have a history of our communications with you.