Overview ISO 27001 Certification Application Security Testing Vulnerability Management Malware Monitoring Compliance Security Consulting Software Development Services

Overview IAM Authentication & Fraud PKI Information Protection Host Intrusion Defense System Antiphishing Brand & trademark protection SSL Certificates

Overview Financial Services Healthcare / Pharma Government Power / Energy / Utilities Manufacturing Software / ITes

Overview Technology Partners

By Domain Testimonials

About Us Vision & Mission Management Advisory Board Infrastructure Indusface News Indusface in News Careers Contact Indusface

data sheets

case studies

"Having chosen Indusface as a strategic consultant has provided an efficient, flexible, cost-effective solution to address all our Information Security needs. Indusface has clearly demonstrated it's commitment to reliability and quality in providing outsourced IT Security solutions."

Mr. S.R.Shah
Alembic Ltd - Leading Pharma Company in India

ISO 27001 certification

services

The word of zeroes and ones is expanding expoentially. The emerging vulnerabilities and threats, ever-expanding complex networks and access points, coupled with increasing regulatory requirements are drastically the way organizations approach risk mitigation. Stringet privacy and security legislations across the world and ballooning concern on security issues in outsourcing are compelling companies to implement information security. ISO 27001 is the only formal standard against which organizations may seek independent certification of their Information Security Management Systems (ISMS). The application and use of these standard has been taken up by organizations small, medium and large in many parts of the world as a "common language" for information security management: to ensure business continuity, minimize business damage by preventing and minimizing the impact of security incidents, to maximize business investments and opportunities, providing assurance to partners and customers of the organization's status with respect to information security without the necessity of them conducting their own security reviews

Indusface Solution

Indusface's security consulting team comprising of ISO 27001 Lead Auditors and Implemented has successfully assisted several organizations across the world in implementing and achieving ISO 27001 certification.

Our methodology is based on the standard PDCA model and involves the below steps

Project initiation and understanding
»  Kick off with an initial round of discussion with concerned people at various levels and perform information
security profiling

Define ISMS
»  Define detailed scope for implementing Information security management system (ISMS) based on ISO 27001

Perform RiskAssessment
»   Define and tailor Risk management approach as per the organization's requirements
»   Perform risk assessment for various assets within the organization

Derive Risk Management strategy
»  Suggest various Administrative, physical and technological controls to mitigate risks

Develop necessary ISMS documents as required by the standard
»  Based on the risk assessment report and the requirements of the standard develop all necessary ISMS documents

Training and awareness
»   Develop a customized and targeted information security training program to ensure effective awareness of security amongst all level of users

Preparation for Certification
»  Instialize an intuitive approach to ensure preparedness of organization for the certification audit by conducting pre-certification audits

Ongoing improvement
»  Assist in taking corrective and preventive actions and continually improve the ISMS.

© 2009 Indusface. All rights reserved. Terms of Use and Privacy Statement