
Scope Extension
Many organisations start small with ISO 27001 by only including specific areas in the scope of the management system. However, business needs, external commercial factors and ever-evolving security threats often lead to a requirement to extend the scope of the ISMS to cover other areas of the business. Scope extension is a common requirement which we can help businesses achieve as part of the requirement for ISO 27001.