Compliance & Certification Services


Understanding Certifications, Standards and Best Practies

ISO certifications are published by the International Organization for Standardization in a wide range of areas including quality management, technology, security, food safety management and occupational health and safety. Other Standards such as NIST (National Institute of Standards and Technology) a USA government initiative with activities in physical science areas such as Cyber Security, Risk Management Framework, Privacy Framework and Information Security. These standards as well as many others are evolving rapidly inline with technology advancements to assist organisations manage their security, quality, environmental impact, health and safety of their personnel effectively. They provide “requirements, specifications, guidelines, or characteristics that can be used consistently to ensure that materials, products, processes, and services are fit for their purpose.”

Why does your organisation need Certifications or Framework?

A Certification is an investment in your company’s future opportunities. For some industries, certification is a mandatory requirement to bid for government tenders. Others will benefit through ways they didn’t even expect delivering quantifiable savings and improvements. Essentially, certification confirms your compliance to a framework, whether it is to manage your Information Security, Quality Control, Environmental Impact or Work Health and Safety. Some organisation may only wish to implement the framework and not bother with certification – this in some cases is quite acceptable and in some instances. Not all standards are certifiable and most are developed as guidelines or best practices to assist businesses work effectively.

Certification offers proof of your organisation’s ability to meet the requirements by independent (certifying body), and in turn customer satisfaction. Below are the top five key benefits your organisation will derive through certification:

  1. In-depth analysis of your systems to Identify and solve recurring problems.
  2. Improved system and process efficiency.
  3. Increased competitive when tendering for contracts.
  4. Reassurance for clients in the delivery of quality services and products.
  5. Sound work practices and satisfaction for employees and management

What does SAMEC Offer?

Our company offers to partner with organisations to assist them integrate and streamline process and systems to enable compliance to a number of standards and security frameworks. We can help you evaluate the pros and cons of a formal management systems and enable you to scale up for the


Unlike others, SAMEC goes beyond just providing templates and documentations to help businesses attain certification. Instead, we will design a unique framework for your organisation, along with streamlining processes and integrating systems. Our “big picture” thinking is what sets us apart. We create a fit for purpose framework that is widely accepted by your organisation and meets international standards.

We review your processes, considering your compliance/certification requirements, work with your team and develop your systems. While the end goal is to achieve Certification – it’s the exploration and development of better systems and implementation processes that provides real long-term financial and operational benefits.

SAMEC’s years of operational experience and understanding of business efficiency and compliance requirements means we have the knowledge and expertise to help you achieve compliance correctly, the first-time around.

Heading the Compliance team is Arjang Safa who has been working with companies for the past twenty years to develop leading edge technology products. His ability to establish sound processes and project management methodology has enabled the successful delivery of products from inception to commercialisation.

It is this hands-on, practical experience in developing processes that sets SAMEC Compliance apart from other providers.

Compliance should not be just an add-on process but rather it should be an integral part of your operations.

Certifications & Compliance Provided

Regardless of the nature of the business, our experienced and agile team can help organisations to achieve compliance for the following ISO certifications.

  • ISO/IEC 27001 Information Security Management
  • SOC 2 Type 2 (Service Organisation Control)
  • PCI DSS Payment Card Industry Data Security Standard
  • The Protective Security Policy Framework (Australia)
  • ISO 9001 Quality Management Systems
  • ISO 14001 Environmental Management Systems
  • ISO 45001 Occupational Health and Safety Management Systems
  • BS 8001 Framework for Implementing the Principles of the Circular Economy
  • ISO/IEC 24762 Information Technology Security Techniques – Guidelines for information and communications technology disaster recovery services and others.

Information Security Standards and Compliance

We have successfully implemented ISO certification for Information Security across many industries. Certifications include:

  1. ISO/IEC 27001 Information Security Management
  2. SOC 2 Type 2 (Service Organisation Control)
  3. PCI DSS Payment Card Industry Data Security Standard
  4. The Protective Security Policy Framework (Australia)

Our highly experienced team can assess the effectiveness of your existing controls against security standards and best practices. We can guide you with design, and development of a secure system with further additional controls.

We are one of a select group of companies with a proven track record, and the necessary skill set to assess and develop a comprehensive physical and digital information security roadmap.

This experience enabled us to achieve SOC 2 Type II compliance in less than five months for our information management client’s datacentre. The speed and quality of our service save the organisations considerable time and expense.

We are committed to developing effective and suitable controls to meet your operational and risk settings while achieving compliance to international standards.

ISO Management Systems and Standards

ISO Management Systems and Standards help organisations improve their performance by specifying repeatable steps that businesses consciously implement to achieve their goals and objectives.

It also creates an organisational culture that reflexively engages in a continuous cycle of self-evaluation, correction and imprvement (a risk based approach). This is achieved through heightened employee awareness and management leadership and commitment.

Our team has assisted local companies efficiently achieve certification and compliance. Specifically, the following:

  • ISO 9001 Quality Management Systems
  • ISO 27001 Information Security Management
  • ISO 14001 Environmental Management Systems
  • ISO 45001 Occupational Health and Safety Management Systems
  • BS 8001 Framework for Implementing the Principles of the Circular Economy

and more.

Business Continuity Management and Disaster Recovery

As a certified business continuity planner, we offer the following services:

  1. Project Management
  2. Risk Analysis and Review
  3. Identify existing risks and threats, specifically, based on geographic location, processes and procedures.
  4. Business Impact Analysis
  5. Review the effect of interruptions to operations or processes on all functions of the business.
  6. Business Continuity Strategy
  7. This involves a conceptual summary of strategies for prevention or mitigation, crisis response and recovery. These strategies are necessary to ensure business continuity from when a disaster occurs to resumption of normal operations.
  8. Plan Development
  9. Define procedures for notifying the right people and assessing the operational impact. It involves further development of specific steps to minimise risks of an outage and restoring normal operations afterwards.
  10. Testing and Exercising
  11. Effective plans require testing. This component involves subjecting the developed recovery plan to stringent tests so assure success.

Our highly qualified and experienced IT & DR specialists can assist you with your technology and operational BCP and DRP.

Business Continuity consists of a plan of action which ensures your regular business will continue during a disaster. The impact of COVID-19 has tested many companies in an unprecedneted way.

about us

SAMEC Pty Ltd, is an Australian privately-own company, based in Sydney, operating in Australia and overseas since 2003.

Our focus is on creating efficient processes to help companies achieve business growth. SAMEC scales up your organisation into an enterprise level operator in an efficient and cost-effective approach.

All your IT, Security and Compliance Services are managed by a team of experts working as part your organisation.

Contact us

  • Address:
    PO Box 232
    Maroubra NSW 2035

  • ABN: 47 161 107 713

  • T: +61 402 031 911