The breadth of the Fortis service portfolio enables it to offer a variety of risk management & consultancy support solutions. One area we specialise in is helping our clients achieve the risk management and compliance standards they need to operate with confidence.


From a simple one-off gap analysis against a specific standard such as ISO/IEC 27001 or ISO 9001, through to complex multi standard integrated management systems projects. 

Fortis are associate consultants with BSI, registered consultants with LRQA and other UKAS accredited certification bodies. 

ISO Certifications Consultancy Services

BSI ACP logo 2022.png
Full Table.png

Information Security

Data Protection



Health & Safety 

Environmental Compliance Standards

Main Table-01.png

We recognise the path to compliance can seem challenging and complex, so we pride ourselves on helping you find a clear roadmap to accredited certification in:

Your Fortis ISO specialist consultant will guide, support and work with you throughout the process, from implementation to certification and future maintenance of your certifications.

ISO Photo - Upper.jpg
Table 3.png

ISO/IEC 27001 Information security management:

For keeping your information assets secure by providing requirements for an information security management system (ISMS). 

ISO/IEC 27001 Certification:

Shows that your organisation takes their information security risk management seriously.


Any organisation operating in an environment where data confidentiality, integrity and availability is a priority will prefer to work with other organisations that have been certified ISO 27001 compliant. 

ISO/IEC 27017 Cloud Security:

gives guidelines for information security controls applicable to the provision and use of cloud services.

ISO 9001 Quality Management:

or organisations asking how to improve the quality of their products and services and consistently meet their customers’ expectations.

ISO 22301 Business Continuity Management Systems:

Enabling organisations to plan, establish, implement, operate, monitor, review, maintain and continually improve a documented management system to protect against, reduce the likelihood of occurrence, prepare for, respond to, and recover from disruptive incidents when they arise. 

ISO 45001 Occupational Health and Safety:

For organisations that are serious about improving employee safety, reducing workplace risks and creating better, safer working conditions. 

Good practice in Health, Safety & Wellbeing makes sound business sense. Employers have a duty to protect the health, safety and welfare of their employees, visitors, sub-contractors, and other people who might be affected by their business.

ISO 14001 Environmental Management Systems:

This is the international standard for environmental management systems (EMS) and can provide assurance to company management and employees as well as external stakeholders that the environmental impact is being measured and improved. 


This is the principal management system standard which specifies the requirements for the formulation and maintenance of an EMS. This helps to control your environmental aspects, reduce impacts and ensure compliance. 


As a holder of ISO 9001 Fortis understands that Implementing ISO Management System Standards provides organisations, both large and small, with a robust business management system. 


Fortis specialises in supporting all types and sizes of business with implementing, maintaining and achieving accredited ISO standards certification. In addition to achieving externally-accredited certification, ISO Management Systems can be used as part of the daily management and routine of an organisation.

Fortis has experience working across the full suite of ISO management systems or combining a number to build one fully integrated system. 

Whilst non an exhaustive list, these are the most common certifications we find customers ask for consultancy to achieve:

ISO Photo - Lower.jpg

The tried and tested Fortis approach, guiding clients to achieve ISO/IEC 27001 the first time. 

We review your organisation's specific ISO 27001 requirements

Table 2 -02.png
Table 2.png

You get a dedicated technical lead consultant & account manager

Table 2 -04.png

Post-certification, we can support you with ISMS Internal Audits. Remote or onsite support available.

Table 2 -06.png

We provide a fully costed proposal for your review & approval.

Table 2 -03.png

Your dedication consultant can provide technical support and reassurance through your certification audit.

Table 2 -05.png
Table 2-01.png