|EnterpriseGRC Facilitated Compliance Management - ISO 27000 Compliance|
If you are interested in meeting ISO 27000:2005 compliance, we suggest you begin by purchasing a full copy of the ISO 27001 and ISO 27002 Requirements and Code of Practice.
Any information referencing the ISO 27000 or any other ISO standard is the restricted copyright of the ISO organization.
⎯ ISO/IEC 27000:2009, Information security management systems — Overview and vocabulary
⎯ ISO/IEC 27001:2005, Information security management systems — Requirements
⎯ ISO/IEC 27002:2005, Code of practice for information security management
⎯ ISO/IEC 27003, Information security management system implementation guidance
⎯ ISO/IEC 27004, Information security management — Measurement
⎯ ISO/IEC 27005:2008, Information security risk management
⎯ ISO/IEC 27006:2007, Requirements for bodies providing audit and certification of information security management systems
⎯ ISO/IEC 27007, Guidelines for information security management systems auditing
⎯ ISO/IEC 27011, Information security management guidelines for telecommunications organizations based on ISO/IEC 27002
ISO/IEC 27001:2005 implements effective information security management in compliance with organizational objectives and business requirements. Risk-based specification designed to take care of information security aspects of corporate governance, protection of information assets, legal and contractual obligations as well as the wide range of threats to an organization’s information and communications technology (ICT) systems and business processes.” (re-number ISO/IEC 17799 as ISO/IEC 27002)
EnterpriseGRC Solutions implements ISO 27001 at all stages, specializing in rapid Statement of Applicability readiness and assuring an efficient and cost effective certification process.
EnterpriseGRC Solutions® uses a very specific 4Point GRC Facilitate Compliance Methodology. Our tools and approach make it possible to gather upwards of hundreds of internal documents, to evaluate and align those processes with industry Information Security Best Practice, and to rapidly represent the organization in an ISO 27001 certification process.
On a separate note, I'd like to promote a colleague from our European community, Dejan Koustic. I don't suggest anyone use his resources and not also give him business, but he provides a lot of community training at no cost. When I meet a person who shares my belief that information and training leads to doing the right business at the right time, I like to promote them. We don't have any financial relationship, he's just a good professional. Even though our services overlap a little, EnterpriseGRC Solutions is in California. We also can't offer the range of topics and multiple languages. Lastly, I learned quite a bit from Dejan, and hope to continue to do that.
Sent on June 1, 2012
Hi Robin Basham,
Just wanted to let you know we have upgraded our business continuity documentation toolkit - now it is aligned with ISO 22301, but still all the documents are compliant with BS 25999-2 too. For detailed description of our ISO 22301/BS 25999 Documentation Toolkit please click here http://bit.ly/iso22301-bs25999-documentation
ISO 22301 is a new international business continuity standard that has replaced BS 25999-2 - for comparison of these two standards see this infographic: http://bit.ly/iso22301-vs-bs25999
We have also translated the documentation into these languages:
* Spanish: Paquete de documentos sobre ISO 22301/BS 25999 http://bit.ly/documentos-iso22301-bs25999
* Portuguese: Kit de documentação da ISO 22301/BS 25999 http://bit.ly/documentacao-iso22301-bs25999
* Croatian: ISO 22301/BS 25999 paket dokumentacije http://bit.ly/dokumenti-iso22301-bs25999
Information Security & Business Continuity Academy http://www.iso27001standard.com
|Last Updated on Friday, 01 June 2012 09:47|
|Page 1 of 4|
The GRC Buzz
Holistic Information Security Practitioner Institute (HISPI) welcomes EnterpriseGRC Solutions as member of their HISP Certification Board/Committee Read More
ITpreneurs is proud to name EnterpriseGRC Solutions as its newest certified partner. ITpreneurs and EnterpriseGRC Solutions will collaborate to increase Cloud and Virtualization concepts and controls, ISO 27001, COBIT and ITIL courses offered through EnterpriseGRC Solutions. “Every member of my organization has achieved at least one certification through ITpreneurs, and this is the second company that I’ve founded with that same promise. [...] It is a proud day, that we can be a part of ITpreneurs’ landmark efforts to bring forward CompTIA Cloud Essentials training and certification. - Robin Basham, Managing Partner.
Spontaneous Kudos - We've really been digging our digest from The Compliance Exchange
Partners and Client Information
Ryma Technology Solutions names EnterpriseGRC Solutions as an Affiliate Partner. More. Recent Wins: EnterpriseGRC Provides IS0 27001 Policy and SOA readiness for NetSuite Inc. EnterpriseGRC Solutions Sponsor to ISACA ITGI. Recent Partner Alignments include ITpreneurs, Control Solutions International
Request For Information? Please fill out our Wufoo form.