home
about us
products & services
analysis slash delivery slash testing slash operations slash awareness
news events
case studies
resources
contact us
* *
ISO17799 / BS7799 transition management previous servicenext service

headlines

adoption of ISO17799/BS7799 is accelerating internationally

organisations are recognising that from being a discriminator it will soon be a prerequisite to conducting business in many sectors

alignment with the ISO17799 / BS7799 standard can be a daunting task

commissum's experienced professionals are able to efficiently manage the transition process for you

benefits of commissum managing the process for you include:

knowledge of the standard and implementation process

limited distraction to the business

management controls established in empathy with values of the business

certification right first time with less cost


issues

Establishing the Information Security Management System (ISMS) necessary to achieve alignment with the ISO17799/BS7799 standard can be a daunting task. If done in-house, it is likely to divert resources and attention from the tactical demands of security management and administration, if not from the business of the organisation in general. If you have decided to seek formal certification, you want to adopt a "right first time approach" as failing to achieve it will not only reflect badly on your business and security management practices, but potentially also significantly increase the cost of the process.

The UK Department of Trade and Industry (DTI) has published a roadmap for achieving alignment with ISO17799/BS7799. The process is complex and for efficient and effective implementation requires experience and knowledge in risk management and establishment of security controls and documentation.

approach

The UK DTI guidance material stresses that an organisation should use risk management techniques to establish the scope and depth of requirement for security controls. Controls and processes must be appropriate to the business. commissum's experienced professionals are able to efficiently manage the process for you, the elements of the approach taken being:

  • proven management plans used to conduct assignment
  • ISO17799/BS7799 gap analysis undertaken to establish requirement
  • experienced IT Security Manager conducts requirement review and analysis
  • definition of control objectives and statement of applicability maps organisation's security requirements onto clause of standard
  • implementation plan drawn up to achieve control objectives
  • management of implementation process
  • audits conducted to test readiness for independent 3rd party review by accredited organisation leading to formal certification
customer benefits

Clients benefit from the applied knowledge of experienced commissum professionals:

  • knowledge of the standard and its implementation process
  • limited distraction to the business from day-to-day management of the process
  • security management and administration controls established in empathy with the values of the business
  • faster and more assured certification (or self-certification) - right first time with less cost
  • assistance in selecting, and co-ordinating with an appropriate certification agency

Note: You can download details of this service as a Adobe Acrobat PDF by clicking on the button above. If you do not already have Acrobat Reader, you can download it for free from the downloads page.
interim security management
 managed services business
continuity planning 		ISO17799 / BS7799 transition
   
site map

slash

 terms & conditions © 2001-2008 commissum