How Healthcare RM is streamlining compliance and delighting auditors with ISMS.online

The Challenge

The team at Healthcare RM knew that robust quality management, information security, and cybersecurity were paramount to establishing the company as a trusted healthcare solution. As such, the business had successfully achieved UKAS certification to ISO 27001, ISO 9001, and ISO 22301 but was seeking a simpler way to manage its compliance. 

Before using the ISMS.online platform, the company maintained compliance by recording evidence using spreadsheets and a document management system and setting manual reminders for essential risk and policy reviews. This approach worked for maintaining certifications, but it made for a time-consuming and unnecessarily intensive process for the team.

“People panicked when the word audit was mentioned. You just think, “OK, this is not the right way to do it.” When we went through the UKAS process and had our first audit to get the certificates, I asked, “Is there anything we can use that will make this whole process better?”

Adam Hamilton Director of Operations, Healthcare RM

Healthcare RM needed a solution that would allow Adam and his team to easily manage multiple ISO standards, allowing them oversight of overall progress, task assignments and completion status. Ease of use for external auditors was also vital.

The Solution

Healthcare RM implemented the ISMS.online platform for simplified compliance, transferring the management of all three of its existing UKAS-accredited certifications: ISO 27001, ISO 9001 and ISO 22301. The platform allows the team to easily view and manage its certifications under one roof, centralising compliance efforts with a live dashboard that provides an overview of progress and outstanding tasks.

We were using spreadsheets and the document management system, which was messy, said Adam. Now we have the ISMS.online platform, we use it as that strategic view – a helicopter view of everything that’s going on with our three certifications.

Using ISMS.online alongside their existing document management system, Healthcare RM have been able to simplify policy, process and evidence management while leveraging the platform’s automated reminders to address actions and achieve continuous improvement.

“When you log into the platform you can see everything: whether we’re up to date on everything and what’s up and coming. That, to me, was the biggest difference, saving me so much time.”

Adam Hamilton Director of Operations, Healthcare RM

The Result

“You’re saving one person’s worth of work per year. If we didn’t have the platform, we’d probably have to employ another person to support and help.”

Adam Hamilton Director of Operations, Healthcare RM

Healthcare RM has recently achieved recertification to its ISO 9001, 27001 and 22301 standards, showing the organisation’s dedication to quality and information security governance. The team used the ISMS.online platform to reduce the time and resources needed for maintaining compliance, as well as accelerating the internal audit process. 
“We can see how many outstanding tasks there are and who they’re assigned to, then remind people they need to log on and get those things done. That’s a huge time saver and cost saver,” said Adam.

The business has also significantly improved its external audit process with the ISMS online platform. Clearly defined risk, asset, policy, and control areas are all accessible from a central dashboard, enabling auditors to navigate the company’s certification projects without requiring further guidance from the Healthcare RM team. 

“Without the [ISMS.online] platform, you have organised chaos for the auditors. With the platform, you have a structure that they can understand. There’s a set structure and a way of doing things that makes it quick and easy for you as the user, but also for the person who’s doing the auditing.”

Adam Hamilton Director of Operations, Healthcare RM

With an ongoing commitment to compliance, quality assurance, and governance, a focus on delivering the right solution for the right customer, and highly regarded UKAS accreditations, the team can continue to position Healthcare RM as a trusted supplier in tender processes and when speaking to prospective clients.

What’s Next?

“We use the platform and our certifications to help better ourselves and provide an even better quality service to our customers, giving them peace of mind that we are forward thinking to every eventuality,” said Adam. 

Despite recently achieving recertification, the Healthcare RM team isn’t resting on its laurels. Adam and his team are focusing on ongoing compliance and are even advising clients on UKAS accreditations for robust quality management and information security governance while they consider potential additional standards for Healthcare RM in the future.

“If anyone’s contemplating using [ISMS.online], they should get the platform because they’re obviously in a state of mind that there is something bothering them about how they currently do their accreditation and their governance. So they just need to jump on and buy it.”

Adam Hamilton Director of Operations, Healthcare RM