ISMS Implementation for multiple clients from IT and ITES industry.
Possessing an extensive experience of development and implementation of ISMS based on BS7799-2:2002 standard.
These projects were consisting of
- Scope Definition
- Risk Management
- Asset Identification & Classification
- Asset Profiling
- Vulnerability Assessment
- Penetration Testing
- Vulnerability and Threat Analysis
- Process based and Risk based Analysis of business processes including Third Party Access and Outsourced Services
- Compliance check (w.r.t. Regulatory requirements, Statutory requirements, etc.)
- Risk Assessment
- GAP Analysis
- Risk Mitigation
- Statement of Applicability
- Development IS Policies & Procedures
- Development of Business Continuity and Disaster Recovery Plans
- Conducting Security Awareness Programme
- Conducting Internal Audits Training Program
- Conducting Internal Audits, etc.