Information Security Management
Best Practice standards accreditation to enhance your business
ISC, one of the UK's leading IT solution providers, can design and implement a practical Information Security Management System (ISMS) that cost-effectively protects your vital information assets and can be certified to internationally recognised ISO specifications.
Companies that tender for business, particularly in the public sector, can be severely disadvantaged or even disqualified if they are not accredited to relevant standards. Even in the private sector, many companies now require robust evidence that their partners operate appropriate standards of Best Practice.
ISC's Information & Network Services (INS) experts can help you demonstrate commitment to Best Practice in your management of information through:
- Compliance with ISO17799 (Code of Practice for Information Security Management)
- Certified accreditation to ISO27001 (the specification of requirements for an ISMS - previously BS7799 part 2)
These will validate your organisation as one with which it is safe to trade, whilst opening your doors to many potential new customers.
About ISO17799
The ISO17799 Code of Best Practice can help you maintain information security by enhancing and integrating your management of:
- policies & procedures
- personnel training
- selection & implementation of effective controls
- effectiveness reviews
- continuous improvement
Commercial benefits of ISO17799 compliance include:
- improved customer confidence & trust
- better personnel motivation & reduced incident impact
- a competitive edge leading to your increased profitability
ISC's specialists are well-equipped to assist you with ISO17799 compliance. We can also help you build a robust Information Security Management System certifiable against ISO27001.
About ISO27001
This certification strengthens your brand and increases your customers' confidence by:
- identifying your organisation as an upholder of business Best Practice
- adding your organisation to preferred supplier lists
- providing you with USPs
- simplifying and speeding your tendering process
- increasing your business's efficiency
Modular ISC services to support your Best Practice accreditation programme:
- Gap Analysis: measuring and documenting the gap between current ISMS practices & Best Practice
- Defining & documenting the ISMS scope
- Information Risk Management: identifying, assessing & minimising information risks as they affect key business processes
- Training and awareness programmes
- Information security incidents detection & response procedures
- Identification of failed & successful security incidents
- Planned regular ISMS monitoring, auditing, maintenance & improvement
You can take advantage of a free half-day consultation to establish your needs. Once the modular service components are chosen and combined to produce the appropriate solution, our consultants will schedule and perform the work to suit you.
On your site, being mindful of your business goals, we will gather information, run workshops and conduct audit reviews. Off-site, we will collate the information and write policies, procedures and reports, carefully documenting all agreed
controls.
ISC provides:
- Fully-qualified, experienced project managers
- Fully-qualified, experienced and independent IS Auditors
- Consultants with over 30 years experience in all aspects of IT/IS
