These assessments will provide a solid foundation for assessment against ISO 27000x, ISO 27701 and emerging Cyber-Assessment Frameworks.
Our IT Security Review service is built on the well-established CIA Triad – Assessing the Confidentiality, Integrity Availability and overall resilience of an organisations information systems.
It also includes elements from traditional ISO 27001 requirements and integrates novel elements from the ISO 27701:2019 extension on Privacy Information Management.
Finally, national implementations of the NIS Directive are resulting in new guidance, assessment frameworks and requirements on a regular basis. We leverage elements of this emerging good practice to continuously improve our assessment framework to ensure our clients get the latest in cyber-security risk assessment.
Data is an asset to be leveraged by your organisation and protected from misuse. Our IT security review ensures that your system security is sufficient for the type of data you process. We offer an individualised service, tailored to your data, not a cookie-cutter approach.
An IT security review will assist your team in meeting the requirements of the Confidentiality and Accountability principles. An IT security review will identify gaps and areas where security is robust or sufficient to help your organisation demonstrate what is in place.
The IT security space is dynamic, with regular updates to legislation, international standards and good practice. Our methodology integrates the latest developments in all these areas to bring you the latest guidance.
You can view the Executive Summary and Table of contents of the Project Solebay Risk Assessment Methodology Report.
Please sign up to the Solebay mailing list to download the Full Solebay project report.