developing a business prioritised roadmap.
Assessment & AssurancePolicies and Standards Review and Development
Information security begins with sound security policies. A security policy establishes who is authorised to access different types of information, and points to standards and guidelines regarding how much and what kinds of security measures are necessary for your particular organisation.
Procedures provide the method for implementing those standards and guidelines in order to carry out the established policy. Without written policies and procedures, an organisation runs the risk of being misunderstood by its employees and makes it difficult to legislate disciplinary measures if violation occurs.
Sense of Security develops policies and procedures based on real-world experience that comply with the Australian Standard AS/NZS 7799, International Standard ISO 17799, and satisfy audit standards such as CoBIT. In addition to the development of new documents, Sense of Security also performs gap analysis and update services on existing documentation.