Quality and ISMS Policy

It is the policy of BTL to maintain a quality system designed to meet the requirements of ISO9001:2015 & ISO 27001 (or any other standard in line with Annex SL Structure) in pursuit of its primary objectives, the purpose and the context of the organisation.

It is the policy of BTL to:

  • strive to satisfy the requirements of all of our customers, stakeholders and interested parties whenever possible, meeting and exceeding their expectations;
  • make the details of our policy known to all other interested parties including external where appropriate and determine the need for communication and by what methods relevant to the business management system. These include but not limited to customers and clients and their requirements are documented in contracts, purchase order and specifications etc;
  • comply with all legal requirements, codes of practice and all other requirements applicable to our activities;
  • the reduction of hazards, prevention of injury, ill health and pollution;
  • provide all the resources of equipment, trained and competent staff and any other requirements to enable these objectives to be met;
  • ensure that all employees are made aware of their individual obligations in respect of this quality and information security policy;
  • maintain a management system that will achieve these objectives and seek continual improvement in the effectiveness and performance of our management system based on “risk”.

This quality and information security policy provides a framework for setting, monitoring, reviewing and achieving our objectives, programmes and targets. Customer service is an essential part of the quality process and to ensure this is fulfilled, all employees receive training to ensure awareness and understanding of quality and information security and its impact on customer service. To ensure the company maintains its awareness for continuous improvement, the business management system is regularly reviewed by “Top Management” to ensure it remains appropriate and suitable to our business. The Business Management System is subject to both internal and external annual audits.

Scope of the Policy (ISMS Only)

The scope of this policy relates to use of the database and computer systems operated by the company at client sites, in pursuit of the company’s business of providing cyber security consulting services to both the public and private sector. It also relates where appropriate to external risk sources including functions which are outsourced.

Join us in a partnership founded in research, education and execution

Our success is built on protecting our clients’ success. We have a distinguished track record of supporting our clients in building secure by design environments. Our consultants have successfully ushered in new security practices in leading pharmaceutical, energy and retail institutions. Bramfitt has over 50 specialists around the world and we are committed to forging long-term relationships with our clients, providing them with genuine insight and practical advice, and supporting them as they navigate the everchanging security landscape.

Let us be your partner for the next phase of your security journey.

EMEA Headquarters
Tower 42, 25 Old Broad Street London, EC2N 1HN
+44 (0) 208 187 4234
AMER Headquarters
45 Rockefeller Plaza, 20th Floor New York, NY 10111
+1 (800) 468-6046
APAC Headquarters
96 Wanneroo Rd, Yokine WA 6060, Australia
Social
crown commercial service supplier
cyber essentials
iasme consortium
pentest
ukas iso 9001ukas iso 27001
Back to top
Get in touch