Customer Support
The ISO17799 standard was developed with the premise of guiding companies toward a standardized approach to implementing information security controls. It is made up of 12 areas of guidance covering topics every organization needs to consider in an information security management plan. The standard is an internationally accepted set of guidelines for measuring the state of management of information security within an organization. Using the standard to build an information security management system can save an organization resources, time and money. It also helps to reduce the reactionary methods for managing security that so many businesses are trapped in today.
Apart from undisputable benefits, electronic data processing brings about serious threats. Proper defense is laborious and costly to maintain in-house. This problem often leads companies to the question whether current practices of data protection are adequate to the threats perceived or whether the same or even higher level of protection could be achieved with much greater efficiency. Our security assessment gauges the approach to information protection against threats to the orgganization, typical ricks and mitigation expenses for companies of like size and business sector, and proven practices. Since the ISO 17799 standard has several sections, the review can be taylored to specific areas of concern or as a comprehensive review of all components, including technical investigation, penetration testing of current countermeasures, and detailed audits of server configurations. The results and information our clients receive typically pays for the review by identifying overspending and potential process improvements.
Your benefits
The adequacy of your information protection will be gauged against usual standards and practices Specific measures proposed by the audit team will help you to make your investment in information security more efficient and effective. The methods and procedures documented in the assessment report can be used by your staff when performing internal audits. Once certification has been reached, your organization will be able to display the seal on your website or marketing literature.
Methods and Techniques
The IT Balance information security review leans on generally accepted international standards and methodologies such as:
British security standards ISO 17799, ISO 27001
Technical report CSN ISO/IEC TR 13335 Information technology - Guidelines for the management of IT Security relevant sections of COBIT, ISO 15408 etc.
Virtual CISO
Penetration Testing
Security Health Check
Website Review
HIPAA Review
Policy Development
ISO17799/27001
Firewall Installation
Backup & Disaster Recovery
Virtual CIO
IT Department
Total Desktop Care
Total Server Care
Support Portal
Restore My Files
Website Development
Website Package
Software Development
Code Review