ISOAH Data Securities Pvt Ltd

ISOAH Data Securities Pvt Ltd

Speciality: network and infrastructure pentesting

Kolkata, India 30 employees
Visit Website View on LinkedIn
[01] About

Cybersecurity company specializing in ISO 27001:2013 certification, penetration testing, and security audits; 14 employees with 1400% YoY growth; based in Kolkata, India; member of NASSCOM, CII & DSCI; offers VAPT, ethical hacking, and IT security consulting.

ISOAH is a group of security professionals who help organizations to control the risk factors and become ISO 27001:2013 certified following matured, proven and highly effective methodology. We are the member of NASSCOM, CII & DSCI. The auditors are OSCP, OSCE, CEH, ECSA, LPT, CHFI certified experienced ethical hackers and Penetration Testers, who have audited companies like Bandhan Bank, CESC, Apollo Gleneagles Hospitals, Jadavpur University, ABP Ltd, AMRI Hospitals, Spencer, ElectroSteel Castings, TATA Steel, Titagarh Wagons & 50+ companies. Things We Do: 1. ISO 27001 Implementation / audit 2. PCI DSS, SOC, ITGC 3. GDPR Assessment 4. Vulnerability assessment / penetration testing - Network, Firewall, Data Centre, Software, ERP, E-Commerce, Mob App, Cloud App etc 5. Corporate Training – InfoSec • Speaker at CeBIT International conference on 16.02.2015 • Speaker at CII Annual Events - August 2014-2019. • Speaker at FICCI, Annual Consumer Rights Day, Kolkata (14.03.2014) • Organized Workshops on IT Security at Nasscom – 19.03.2015 & 06.01.2016. • Speaker at ISACA Kolkata Chapter on “cyber Security” – 15.11.2014. • Conducted a cyber-security workshop at STPI on the eve of Digital India Week – 02.07.2015. • Organized workshop at US Consulate (Kolkata) on Identity Theft – 18.03.2016. • Trained Kolkata Police, Anti-Cyber-crime Cell, Lalbazaar HQ (21.06.2014) • Conducted Workshop at BSNL Kolkata HO. • Conceptualized, design & organized the biggest Ethical Hacking contest in West Bengal – InfoCom Hackstars - December 2013-2018), attended by 2000 participant. • Appeared on Television shows on “Cyber Security” – News Times, India Today, Doordarshan, R Plus, ABP Ananda. • Created/managed the online Community “Hacker’s Library” back in 2005, which was the biggest IT Security forum in India at its time, with 80000 members.
[02] Services
Penetration Testing
Vulnerability Assessment
ISO 27001 Audit And Implementation
GDPR Compliance
Network
Server And Data Center Security Audits
Website And Mobile App Security Audits
Ethical Hacking
Information Security Training.
[03] Certifications
ISO 27001:2013

ISO 27001:2013: Information Security Management Standard


Origin


ISO 27001:2013 was developed and published by the International Organization for Standardization (ISO) in partnership with the International Electrotechnical Commission (IEC). Released in October 2013 as a revision to the original 2005 version, this standard emerged from the earlier British Standard BS 7799, which was created in the 1990s. The standard was developed to provide organizations with a systematic framework for establishing, implementing, maintaining, and continually improving an Information Security Management System (ISMS), addressing the growing need for consistent information security practices across industries and borders.


Industry Importance


ISO 27001:2013 is highly valued in the industry because it provides internationally recognized criteria for managing sensitive information and mitigating security risks. Organizations that achieve certification demonstrate to clients, partners, and regulators that they follow best practices for protecting data confidentiality, integrity, and availability. The certification is particularly important for companies handling sensitive customer data, those working with government contracts, or businesses operating in regulated industries. It also provides competitive advantages in procurement processes, helps organizations meet legal and regulatory requirements, and reduces the likelihood of costly data breaches through its risk-based approach to security management.
ISO/IEC 27001:2022

ISO/IEC 27001:2022


Origin


ISO/IEC 27001 was developed jointly by the International Organization for Standardization (ISO) and the International Electrotechnical Commission (IEC). The standard evolved from the British Standard BS 7799, first published in 1995, with the first ISO/IEC 27001 version released in 2005. The most recent version, ISO/IEC 27001:2022, was published in October 2022. It was created to provide organizations with a systematic framework for establishing, implementing, maintaining, and continually improving an Information Security Management System (ISMS), addressing the growing need for standardized approaches to protecting sensitive information in an increasingly digital world.


Industry Value


ISO/IEC 27001 is highly valued in the industry because it demonstrates an organization's commitment to information security through independent, third-party certification. The standard provides credibility and competitive advantage, often serving as a prerequisite for doing business with government agencies and security-conscious organizations. It helps companies systematically identify and manage information security risks, ensure regulatory compliance, and build customer trust. For many industries—particularly finance, healthcare, technology, and cloud services—ISO/IEC 27001 certification has become essential for winning contracts, entering new markets, and demonstrating due diligence in protecting client and organizational data.

CLIP For BS 10012:2017
[05] Notable Clients
  • Spencer's Retail Ltd.
  • Tata Steel
  • Diamond Beverages Pvt. Ltd.