Safety and Risk
Management
We specialize in building security and risk management solutions.
We can help you implement the principles, methods and techniques related to security risk analysis and information security management.
We identify and specify security and risks related requirements and assess information security in the broader context of its target IT environment.
Information security management compliant
to ISO 27001/27005 standards.
Audits and projects:
We provide audits and projects as well as implement of information security management systems in order to minimize threats and ensure the organization's basic business processes continuity. The scope of provided services covers:
Analysis
Analysis and conceptual design of the Information Security Management System, including identification of information assets, risk assessment, preliminary audit, presentation of possible implementation variants.
Implementation
Implementation of the Information Security Management System (ISMS) including definition and approval of the scope and boundaries of the implemented ISMS, identification and classification of information assets, development and ocumentation of the risk management process, establishment of the Information Security Policy and other documentation of the System.
Training and support
Training and support for 'change leaders' in the organization.
Preparation of the System
Preparation of the System for certification for compliance with ISO 27 001.
Risk management compliant
to ISO 31000 guidelines
We support the implementation of a comprehensive and systematised approach to proactive risk management issues in order to increase the likelihood of implementing the organisation's strategic plans. The range of services typical for this class of organisation and management systems (analysis, conceptual design, implementation, training and documentation) allows for supervision and aware coordination of activities at all stages of the risk management process
-
01
Risk identification
Analysis of the present state of solutions releted to business continuity and risk management in the organization, including existing rules, organizational structurec, documentation, processes.
-
02
Analysis
Analysis, evaluation, planning and implementation of action plans.
-
03
Inspections
Inspections, reviews, evaluation of effectiveness of preventive actions applied.
The service may also include a review of the risk management system and evaluation of the results of implementation after a fixed period of use, together with the formulation of conclusions in order to further improve the approach.
Business continuity management compliant
to ISO 22301 guidelines
We maintain business continuity at the level resulting from the objectives of the organization and regulations imposed by law is a basic requirement of each organization. The object of the service is to support the implementation of the business continuity management system compliant to requirements of ISO 22301 standard in the following areas:
Analysis
Analysis of the present state of solutions related to business continuity and risk management in the organization, including: existing rules, organizational structures, documentation, processes.
Development
Development of a conceptual design of the Business Continuity Management System.
Building
Building a system including organisational structure specification, Business Continuity Policy development, Business Impact Analysis (BIA) preparation and realization, definition of critical processes in the organisation, replacement requirements definition, critical processes and resources description, risk analysis, Business Continuity Strategy specification, development of other documentation (plans, procedures) and crisis management structure definition.
Testing
Testing Business Continuity Plans (BCP).
Preparation
Preparation of the System for certification for compliance with ISO 22301.
