Policies, procedures and standards
Insight Consulting is able to assist organisations in all aspects of developing, implementing or managing an Information Security Management System (ISMS).
This can include creating policies and standards, achieving BS7799/ISO 27001 compliance or recruiting members of a security management team. We can also support your organisation through full or partial outsourcing of your ISMS.
Insight has extensive, practical experience of developing and operating security management systems for a wide range of private and public sector organisations. Some of the key activities we're able to address include:
- Reviews of existing policies and procedures against industry best practice
- Risk assessment and change control procedures
- Definition of security policies and standards
- Achieving compliance with BS7799/ISO 27001
- Security incident reporting processes and response strategy
- Building a security culture within an organisation through education and awareness training
- Monitoring internal compliance to security policies
- Maintaining corporate compliance to regulatory or legislative requirements
- Training and mentoring of ISMS staff
- Remote security monitoring and management
- Full or partial outsourcing of an ISMS.
Datasheets
Training courses
BS7799/ISO 27001 compliance
Insight Consulting has developed a proven methodology for achieving BS7799/ ISO 27001 compliance.
CRAMM
Our CRAMM toolkit can help you develop your information security strategy, conduct risk assessments, generate comprehensive, cost-justified countermeasures and create security documentation.