top of page
Devon Based ISO Consultant

ISO 27001 Consulting Without the Security Theatre

When a prospect's security questionnaire is the last thing standing between you and a signed contract, ISO 27001 is how you clear it, for good. But certification is only worth having if it makes you genuinely more secure. We don't do security theatre or controls that look impressive on paper and protect nothing. We build an information security management system that holds up to scrutiny from enterprise buyers, investors and auditors alike.

Why ISO 27001 matters for startups

For a growing company, ISO 27001 is often the difference between being shortlisted and being filtered out. Enterprise customers, regulated industries and investors increasingly treat it as a baseline, and re-doing security due diligence deal by deal is a drain you can't afford. Certification turns "can you prove you're secure?" from a recurring obstacle into a one-line answer.

What we do

We support you end-to-end, and we stay hands-on throughout:

  • Gap analysis: a clear picture of where you are against the standard and what certification will actually take.

  • Implementation: building a management system around your real processes, not a template.

  • Internal audit: testing the system properly before the certification body does.

  • Management review: embedding the standard into how you make decisions.

  • Certification readiness: preparing you so the audit is a formality, not a gamble.

  • Certification support: sitting in the room with you during the audit, you're never alone. 

Why Tiller Quality Consulting?

Information security is core to what we do, not a bolt-on. We deploy only IRCA-registered lead auditors and implementers, and our clients reach certification with zero or minimal nonconformities. We can also support you beyond the certificate, keeping the system live and audit-ready as you grow, rather than letting it become shelfware the moment the auditor leaves.

What our clients say

Conduct AI Testimonial
"Tiller Quality Consulting took us from informal information security policies to a no-findings ISO certification success in 8 months. This simply wouldn’t have been possible without Damien. His support at every stage was indispensable, and we now have a robust infosec machine firing on all cylinders that we are truly confident in."

Chesney Ovsiowitz - Founders Associate

Legal

Privacy Notice

Copyright © 2026 Tiller Quality Consulting. All rights reserved. TQC is a company registered England and Wales Company No.15546928.
167-169 Great Portland Street
5th Floor
London
W1W 5PF

VAT registration number 481548273

bottom of page