ISO Certification Consultancy

Practical, evidence-ready consulting for ISO management systems—built to work in day-to-day operations.

Note: we provide consultancy and preparation support; certification is performed by your chosen accredited certification body.

How we work (engagement flow)

  1. Scope & plan: define scope, objectives, and an evidence-based roadmap
  2. Design: right-size policies, procedures, registers, roles, and governance
  3. Implement: workshops, training, and adoption support across teams
  4. Verify: internal audits, CAPA tracking, management review readiness
  5. Prepare: certification coaching and audit response support

Typical engagement: 6–14 weeks depending on scope, size, and existing maturity.

ISO 9001 — Quality Management System (QMS)

Build a QMS that improves consistency and customer satisfaction while staying usable and lightweight.

  • Scope & context: boundaries, stakeholders, quality objectives
  • Process approach: process maps, owners, KPIs, controls and handoffs
  • Documented information: document control, templates, usable procedures
  • Internal audits: audit program, checklists, findings, follow-through
  • CAPA: root cause analysis, corrective actions, effectiveness checks
  • Management review: evidence-based reviews, actions, continual improvement

ISO 14004 — Environmental Management System (EMS) Guidance

ISO 14004 provides guidance for building an EMS. We translate guidance into practical controls, registers, and routines aligned with your operations.

  • Aspects & impacts: identify, evaluate, prioritize significant aspects
  • Compliance obligations: register, controls, monitoring, evidence planning
  • Objectives & programs: targets, owners, timelines, measurement methods
  • Operational control: procedures for significant aspects and supplier alignment
  • Monitoring: metrics, inspections, trend analysis, corrective actions

ISO 27001 — Information Security Management System (ISMS)

Implement an ISMS that supports the business: clear risk decisions, sensible controls, and strong evidence.

  • Risk assessment: methodology, asset inventory, threats, vulnerabilities
  • Statement of Applicability (SoA): controls selection and justification
  • Policies & governance: roles, responsibilities, and decision records
  • Access control: IAM basics, least privilege, joiner/mover/leaver
  • Supplier security: onboarding, due diligence, contract expectations
  • Incident management: playbooks, evidence handling, lessons learned
  • Awareness: training program, secure-by-default culture
  • Audit readiness: evidence packs, internal audits, stage 1/2 preparation

Deliverables (what you get)

Gap assessment

A prioritized roadmap with clear ownership and timelines.

Templates

Policies, procedures, registers, and audit tools—right-sized for your scope.

Implementation support

Workshops, training, and adoption support across teams.

Audit readiness

Evidence planning, internal audits, management review preparation, and coaching.

Ready to start?

We can begin with a short scope call and a rapid gap assessment.

info@fresnelsystems.com References