Deutsche Version English Version
Information Security Management
Once the risk has been defined based on risk management modules, the adequate and desired security level respectively the contents of security management as a target state will be defined.
ISPIN has years of experience in the following fields:
- Build-up and process organization
- Creation of Security Policies
- Security First Cut
- ISO 27001 – Projects for certification
- Steps towards ISMS (Information Security Management Systems)
- Security Information and Event Management (SIEM)
- Adherence to and integration of certifiable standards
- Interfaces and influences of corporate and IT security culture
- Crisis Management
- Business Continuity Management
- Service Continuity Management
- Disaster Recovery – Restart plans after an emergency
- ISO and BS certifications
- Awareness programs
- OpRisk Management by means of the software and information platform ControlR
- Data Loss Prevention (DLP)
References of well-known, competent references may prove the efficiency of our measurements like the outsourcing of data processing centers or the organizational build-up of a crisis management group as well as enhancing restart plans. Information Security Management has to be seen as a corporation-wide discipline, as a crisis in ICT will have effects on all business units.