Information Security Consultancy
Programme
Management, Project Management, IT Security, Computer
Security, Information Security, ISO 17799, BS 7799,
Gap Analysis, Risk Analysis, Infosec Standards, Education,
Training, Business Continuity Planning, BCP, Healthcheck
We provide
consultancy services in the following Information Security
areas:
- Programme & Project Management
- IT Security Policy Development
- IT Security Procedures
- Risk Analysis
- HMG Infosec Standards
- Business Impact Analysis
- Computer Security Audit
- Education and Training
- Business Continuity Planning
Risk
Analysis
Surveying the risk exposure in a client's IT systems
in terms of system continuity, penetration, hacking
and theft of information.
Programme
& Project Management
Project management for information security implementation.
IT
Security Policy Development
Assisting a client to develop a corporate IT
security policy which reflects the needs of the business
and its exposure to risk.
IT
Security Procedures
Developing detailed security controls and procedures
for IT environments to comply with the ISO/IEC 1 7799:2000
- Code of Practice for Information Security Management.
ISO/IEC 1 7799 and Gap Analysis and Healthcheck reviews
of Security Operating Procedures
HMG
Infosec Standards
Given the complex nature of risk assessment in Information
Technology, it is a baseline requirement that those
responsible for securing protectively marked information
will comply with the Infosec Standard, which has been
specifically tailored to the current HMG security environment.
We have associates
who are CESG CLAS Scheme consultants, and will work
with clients to determine the appropriate levels of
assurance to ensure that protectively marked information
is adequately protected and to prepare Assurance Document
Sets.
Business
Impact Analysis
Assisting a client to build a catalogue of threats and
vulnerabilities relating to their business and the potential
impacts
Computer
Security Audit
Conducting audits of business computing systems to assess
their compliance with the ISO/IEC 17799 - Information
Security Management
Education
and Training
Provision of Information Security training courses at
locations throughout South East Asia.
Providing in-house training courses for groups of staff
in client organsiations.
In particular, tailor-made security awareness training
for management and staff.
Business
Continuity Planning
Assisting clients to plan for recovering business operations
following a disaster that might befall the client's
business systems and resources
Estimates suggest that 75% of
businesses never recover from a major disaster. |
