ISO17 -- Setting the Standard in Information Security Management

According to a survey conducted in 2000 by PricewaterhouseCooper, hacker attacks have cost a whopping $1.6 trillion in the world economy. And the number is on the rise. Information Week reported that the most significant barriers for building an effective security system are lack of time, the complexity of security technology, the pace of change, and capital expenses ranked. Are you one of these companies?

You need to know the risks that your system is exposed to before building a secure information system. ISO17 can help you overcome the above common barriers and conduct a comprehensive assessment of the information security threats, vulnerabilities and impacts, generally across the three key characters, availability, confidentiality and integrity, of your information system. From the result of the assessment, we will help you define the controls needed to protect your valuable company assets and confidential information. We will also recommend how you can strengthen the security your information system in order to reduce risks, detect threats and contain an attack.

The information security risk assessment service will start off by defining the scope of the assessment. ISO17 will identify the key assets of your organization within this predefined scope. Then the Calculated Risk scores are arrived by multiplying the severity and likelihood. The risks will be prioritized next. At the following stage, ISO17 will define the Risk Acceptance Criteria and compare it to the Calculated Risk. The final Risk Assessment table will give your organization, including the top management and the information technology department, a clear picture of prioritized risks and threats for defining the tactical plans.

Benefits include:

Bring up-to-date information of the risks and threats of your company's ISMS

Allow your company to focus time and resources on tackling the high-risk areas

Enable your company to set improvement goals in availability, integrity and

confidentiality

Build a solid foundation for a long term information security

management strategy