Is your organisation ready for the ISO 27001 audit?

Let’s make sure you are.

Our independent internal audit service helps identify and fix any gaps before the external auditor does.

Request Audit
Solutions
Pauwels logo
Club Brugge logo
Easi logo
Hoplr logo
Cimpro logo
Cordeel logo
Responsum logo
Imelda ziekenhuis logo
Citymesh logo
Horafrost logo
Ipsos logo
Pionira logo
Wit Gele Kruis logo

Test your ISMS before the external audit

Your Information Security Management System (ISMS) is in place. The policies are written. The controls are defined. But how confident are you that everything is working in practice, and that your team is truly audit-ready?

A well-executed internal audit is the smartest move you can make before your ISO 27001 certification audit or CyFun audit. It gives you a realistic picture of how your ISMS holds up under scrutiny, uncovers blind spots, and gives you time to correct any issues before the external auditor steps in.

Team of three looking staight in the camera
Talk to an expert
Business man in a modern office

How we audit

Even though it’s an internal audit, it shouldn’t just be a box-ticking exercises. A strong internal audit should do more than check compliance; it show whether your ISMS works in the real world.

That’s why we approach every audit with:

  • Certified ISO 27001 auditors who understand your business context
  • Full independence from your ISMS implementation team (even if we were involved)
  • A methodical, hands-on process that gets results

What to expect from our ISO 27001 internal audit

This structured approach gives you a true-to-life picture of how your ISMS is performing and what needs attention before your certification audit.

Woman working behind her desk

with key stakeholders and process owners

to verify controls and procedures in action

to test how policies and processes are applied daily

A review of your risk treatment plan, legal requirements (like GDPR), and internal standards

An assessment of security awareness across teams

Not ready for the audit yet?

Maybe our implementation is for you

No stress, you’re not alone. Many organisations come to us for an internal audit and realise they’re not quite ready yet. That’s exactly where our ISMS implementation support comes in.

We help you build a rock-solid Information Security Management System from the ground up, one that’s aligned with ISO 27001 requirements and your business reality. Think you might need help with implementation first?

Learn more
Business man in a modern office

Frequently Asked Questions

Yes. ISO 27001 requires an internal audit before certification. It’s your final test run and your best shot at finding and fixing issues.

Even when Cingulum builds your ISMS, we assign a separate audit team to ensure full independence and objectivity.

It depends on your organisation’s size and scope, but typically between 3–7 working days from planning to reporting.

Start early. We recommend planning your internal audit three months before your external audit. That gives you time to:

  • Prepare documents and processes
  • Fix findings
  • Align your management team and treatment plans

Absolutely. Whether you need guidance or hands-on help, we’re here. 

Yes. We can also join your meeting to present the findings clearly and efficiently.

Ready for your internal audit? Let's talk!

We help organisations across Belgium and the Netherlands prepare confidently for ISO 27001 certification.

Whether you’re a first-timer or need a sharper internal check, we’re ready when you are.

Cingulum does everything possible to protect and respect your privacy. You can unsubscribe from our mailings at any time. For more information about how we process your data, please read our privacy statement.
Contact