Trust all is well
There is one client which is just a startup, who is providing IT enabled solutions and services and want to get ISO 27001 certification. But all their Infrastructure, security and IT development and services is provided and managed by a third party which ISO 27001 certified. Only sales marketing is done by the client.
Whether client should go for ISO 27001 certfication or not, even when there is only few employees and company is not yet operational
Looking foward to hear from you