Implementation and support of information security management systems
ex. ISO 27001, Medical Information Technology – Security Management in Health Care using ISO/IEC 27002, Bundesamt für Sicherheit in der Informationstechnologie (BSI) IT-Baseline Protection Catalogues, Advanced Metering Infrastructure (AMI) Smart Metering UCAIUG AMI-SEC-ASAP, etc.
ex. BSI IT-Baseline Protection Catalogues, ISO 27001, Medical Information Technology ― Security Management in Health Care using ISO/IEC 27002, Advanced Metering Infrastructure Security Requirements, etc.
Attack & Penetration Testing
ex. using the Open Source Security Testing Methodology Manual (OSSTMM), ÖNORM A7700, PTES, NIST 800-115, OWASP
Internal Audit support for IT related elements
from IT Governance to technical security of networks, operating systems and mobile devices
Evaluation of IT Outsourcing Providers
- compliance with contractual obligations
- security of data
- compliance with data protection and privacy regulations
- evaluating risks related to outsourcing
We support in finding answers to questions needed to be answered such as
- Does IT represent an obstacle or an advantage fort he purchase?
- How well does IT currently support the business goals?
- How well is IT equipped?
- How can IT be integrated into your own IT?
- Will there be a need for substantive investment in IT in the short and long term?
- Is IT compliant with legal regulations in the country or with the parent company (ex. data privacy)?
- Are there legal and financial risks due to non-compliance?
- Which synergies are likely to be achieved?
Our service supports you in finding answers and solutions to questions like
- Are we able to continue our business if IT fails?
- Which measures need to be implemented in order to be able to recover from IT failure?
- Which measures are economically feasible?
- Which risks and chances arise out of the current approach versus alternative approaches for continuity and disaster recovery?
On demand we will put you in contact with our clients in order for you to be able to obtain direct feedback on our quality and performance of service.