As the ISMS preserves confidentiality, integrity and availability by applying a risk management process, it provides clients and partners with the assurance that risks are adequately managed.
CSI guides and assist organisations with establishing and implementation of an ISMS as per the ISO27001 to allow for certification.
- Complete analysis of the organization as per the Certification Requirement, including but not limited to:
- Security posture
- Policies, procedures, roles & responsibilities
- Risk and vulnerability assessment
- Risk management
- Establish ISMS roadmap and documentation repositories.
- Propose and guide the implementation plan, controls as per ISO 27002, vulnerability management, risk management procedures, assigning responsibilities and training of teams.
- Conducting a pre-assessment and internal audit.