I work for a small software company and it seems we need to be ISO 27001 compliant. From my research (cursory glance on Google) it doesn’t look a simple tick box exercise and as such we think it would be much easier to just get a person in who knows what they are talking about to talk to us and explore what we need to do and minimise the effort on stuff we will never use.
Anyone here do that or know someone who does?
Much Obliged.