Case study

To illustrate how Shearwater can assist you in developing 27001 (previously 7799) compliance consider the case of an organisations that requires assistance in achieving 27001 compliance.

Shearwater will meet with the relevant project manager in developing a gap analysis and identifying issues that arise from the gap analysis. Working with the internal team Shearwater will then assist the organisation in refining a project plan that will assist the organization in developing policies, documenting processes and procedures and preparing for the audit process

Further Shearwater will develop training material and provide the necessary training in to all levels of staff within the organization to achieve the awareness required under the standards

The 27001 process is a dynamic environment and constant updating is required. Shearwater will continue to work with the organization on a recurring basis to ensure that the 27001 security standards remain up to date and relevant within the organisation

The lead consultant assigned to you will be qualified as a lead auditor for the standard.

Download our white paper on the benefits of an ISMS.

ISO 27001

In October 2005 the 7799 part 2 standard was replaced and renamed to ISO 27001:2005. From March 1 2006 this will be the standard used within Australia and organisations wanting to certify to the security standard will need to comply with the new provisions. Existing certified organisations will be required to re certify by March 1 2008.

The standard provides a good foundation on which to base security management and fits with existing systems such as Quality and OH&S.

Meeting the requirements of ISO 27001, gives the organisation a well planned and maintainable strategy as well as a structure for securing their Information and ICT assets. It provides management with the confidence that they have met their due diligence requirements and have addressed the requirements of corporate governance in this area.

Compliance with the standard gives your trading partners as well as the public confidence in dealing with you electronically.

Shearwater Solutions (Shearwater) is well versed in the requirements of the ISO 27001 and ISO17799 (to be rename ISO 27002) standards as well as the AS/NZS4360 risk management and other applicable standards such as AUS 810.

Shearwater provides advice on the standard and how organisations can implement an Information Security Management System (ISMS) that meets and exceeds the standard.

For further information or an informal meeting/briefing, please call sales on (02) 9488 4600 or email:

Features and benefits

Confidence

Compliance with the standard gives your partners, customers and stakeholders confidence in dealing with you electronically and reduces their concerns in this regard.

Manageability

Provides the organisation with a well planned and maintainable strategy and structure for securing their Information and ICT assets. This ensures that no area is neglected and all relevant areas of IT security is considered.

Corporate Governance

Provides the framework for ensuring senior management have performed their due diligence in addressing the requirements of corporate governance in the area if IT security, thereby reducing the potential exposure and liability in this area.

Experience

Shearwater provides organisations with experienced staff in developing and maintaining 27001 compliancy, reducing the time and cost to implement the guidelines.