http://hclte.ch/If33g9 - IT Management Tools
http://www.hcltech.com/ - More on HCL Technologies
"Some of the common challenges that most enterprises face today is adopting the right information strategy with the correct set of security control and keeping pace with information security needs as the organization grows.
HCL's Security Consulting Practice helps customers achieve compliance along with a host of benefits including increased reliability and security of systems, improved risk management and contingency planning. Understand more by downloading our brochure on ISO 27001:2005—Consulting & Implementation Services."
Power point presentation on enterprise performance management
HCLT Brochure: ISO 27001:2005 Consulting & Implementation Services
1.
2. Overview
Information security needs to be ISO/IEC 17799:2005 gives best practice
established in the organization and the recommendations for information security
process should be devised for continual management for use by those who are
improvement of effectiveness of security responsible for initiating, implementing or
controls. maintaining security in their organization
ISO 27001, earlier known as BS 7799 part ISO 27001:2005 defines 133 security
2, is a standard for deploying and controls structured under 11 domains to
maintaining a comprehensive Information identify the particular safeguards that are
Security Management System (ISMS) appropriate to a particular business or
covering all aspects of specific area of responsibility. This is used
CONFIDENTIALITY, INTEGRITY and for ISMS Implementation.
AVAILABILITY.
Challenges
3. The Solution
Following the well-defined process based approach as defined in ISO 27001 standard; the
figure below shows the logical view of ISMS design, and implementation methodology.
• Information Gathering
• Management commitment
• Certification Audit
• Establish ISMS requirement
• ISMS Improvement
• Documentation
• Continual Improvement
requirement
• Corrective Actions
• Project Plan & Statement
• Preventive Actions of Work
• Infrastructure
Assessment (VA)
• Internal Implementation • ISMS Scope & Policy
Audit • Risk Assessment &
• Management Review Treatment
• Review Input • Policy and Procedure,
• Review Output documentation, SOA, etc.
• Implement Controls
4. Benefits
Increased reliability and security of Compliance with legislation
systems
Improved management control
Increased profits
Better human relations
Cost-effective and consistent
Improved risk management and
Information Security
contingency planning
Systems rationalization
Enhanced customer confidence
Why HCL
Vast experience in providing ISO 27001 Consulting to large organizations
Largest certified technical team - Over 350+ certified security professionals
Faster readiness for certification audit by the help of industry and domain experts
ISO27001, ISO 20000 Certified company and security operations
Experience advantage: Largest customer base - More than 400 security customers
Largest audit practice - Over 50 security audit customers
More than 12 years of experience in Information security domain.
For further information on HCL Security Consulting Services mail at
infrapmgsecurity@hcl.com