Client Results & Testimonials
Professional guidance for ISO 9001, ISO 27001, ISO 42001, and other standards to enhance your business operations and achieve certification.
Testimonials
"I’ve had the opportunity to work with Paulo Porfirio in the context of him acting as our consultant for the Syringa ISO 27001:2022 certification, and he provided practical, well-informed guidance throughout the process of standing up our ISMS. He demonstrated a solid understanding of the standard and was responsive to questions and clarifications. While our engagement was limited in scope, Paulo contributed meaningfully to our planning and helped ensure alignment with compliance expectations. I’d consider him a useful resource for similar engagements."
Michael Leonhardt
CTO | Modern Partner | Customer Advocate
"An outstanding ISO 27001 Practice Lead Consultant, Paulo Porfirio has successfully led over 50 organizations to certification worldwide, leveraging a unique, time- and cost-saving methodology while delivering consistent results and ensuring robust information security frameworks across various industries."
Carol Moya, MBA
Linkedin Specialist | Link Method | LinkedIn Advisor for Executives | Consulting | Growth Solutions | Top Voice LinkedIn Sales Prospecting 2024
"I would love to have Paulo back to support any team attempting to implement their ISO system. He is direct, kind, intelligent and highly detailed in his guidance. He is a master in his craft and a good human being as well. We had many fruitful working sessions and were much better prepared during our external ISO certification audits, all thanks to Paulo!"
Angella Carlisle
Information Security professional seeking to bridge the gap between being secure and being compliant
"I would love to have Paulo back to support any team attempting to implement their ISO system. He is direct, kind, intelligent and highly detailed in his guidance. He is a master in his craft and a good human being as well. We had many fruitful working sessions and were much better prepared during our external ISO certification audits, all thanks to Paulo!"
Darcy Korhonen
"I worked closely with Paulo to help prepare for a first-time ISO:27001 certification. Paulo is extremely knowledgeable in the subject matter, and was instrumental in our effort to bring the entire organization up to speed on ISO:27001, implement the appropriate controls, and ultimately help to ensure that we were prepared for the audit (which we were - no NCs our first time around!). I wouldn't hesitate to recommend Paulo when it comes to ensuring all the I's are dotted and T's are crossed in getting an organization compliant and audit-ready."
Charlie Leagra
Helping SaaS startups navigate cybersecurity and compliance
"Paulo has been performing ISO 27001 Consulting and Internal Audits as well as NIST 800-171 Assessments for The BlueWater Group Clients. He has received excellent comments from our Clients and his Audit Reports are detailed and comprehensive. I would not hesitate to recommend Paulo - who is a true professional in everything he does."
Kathryn E. Roberts
CEO - The BlueWater Group, Inc. - Business Management Systems, Manufacturing, Auditing, Supply Chain, Engineering, Process Improvement, Training, Product Commercialization
"Paulo is a skilled ISO professional who takes a great deal of responsibility for understanding the technologies and capabilities of the companies and related audit scope, whether performing readiness or an audit. His collaborative approach is to enable the customer to prepare for their audit in a comprehensive way that incorporates existing processes to enable those needed to meet ISO requirements, in addition to building new processes.
As an auditor he is fair, open minded, and evaluates the company’s policies, standards, and procedures so there are no surprises and the customer leaves the audit with a better understanding of how to continuously improve to meet the standard moving forward. I always enjoy working with Paulo and, more importantly, learn something new in each engagement that helps me be more effective as a compliance professional. "
Chris Mullaney
Global Government Security Program Director
"ISO Consulting has been great to work with over the past many years. Whether your Org is considering a security program and needs help planning, to performing proper gap assessments against an ISO standard, or you need to maintain compliance to an ISO standard for internal audit needs. Mr. Porfirio is a wealth of ISO and Audit expertise, experience, and knowledge. He will take the time you need to ensure a full understanding and applicability of controls to a standards' requirements for your Org. Mr. Porfirio is gifted in his ability to explain complex issues and re-frame them in ways that make sense for your Company. Paulo is always very personable and easy to work with. He desires to build a professional relationship with you. Mr. Porfirio is a strong advocate for continual security improvement and awareness, raising the bar on best practices. I highly recommend his services."
Lee Sale
Information Security - Governance, Risk, and Compliance at Bandwidth Inc.
"I had the pleasure of working with Paulo when he was hired as a consultant to help our scientific research and development company achieve ISO 27001 certification. Initially, there were doubts about the feasibility of achieving certification using AWS cloud services. However, Paulo's expertise and dedication proved invaluable in addressing these concerns.
Paulo's expertise in scoping out and setting boundaries for our SaaS solution ensured that it met the rigorous security requirements for ISO 27001 certification. His deep understanding of the certification process not only helped us achieve certification but also provided guidance on how to maintain it in the long run, preventing things like scope creep. The SaaS has been certified for over 10 years and is now ISO 27701 and SOC certified.
One of the standout moments during our collaboration was Paulo's exceptional ability to build trust and effectively communicate with stakeholders. He provided the information to convince one of our key customers that it was safe to store and process their most critical data in our SaaS solution. This not only demonstrated Paulo's technical knowledge but also his persuasive skills in gaining customer confidence.
Paulo's professionalism, attention to detail, and commitment to security excellence were evident throughout the entire certification journey. His expertise in both obtaining and maintaining ISO 27001 certification is truly commendable.
I highly recommend Paulo for any organization seeking to achieve ISO 27001 certification or enhance their security practices. His wealth of knowledge, strategic mindset, and exceptional communication skills make him an invaluable asset to any team."
Darrin Powell
BIOVIA R&D Information Security Officer at Dassault Systèmes
