SlideShare a Scribd company logo

ISO 27001 Risk Assessment Software

•Download as PPT, PDF•
•
S
scribdJobAN

vsRisk - features and benefits

Business
1 of 14
“The definitive risk assessment tool for ISO 27001 certification” Copyright © Vigilant Software Ltd 2007 = Availability, Confidentiality and Integrity of Data = Compliance = Peace of Mind IS YOUR ORGANISATION’S INFORMATION SECURE?
“The definitive risk assessment tool for ISO 27001 certification” Copyright © Vigilant Software Ltd 2007 = Availability, Confidentiality and Integrity of Data = Compliance = Peace of Mind WOULD YOU COMPLY TODAY TO THE ISO 27001 STANDARD?
“The definitive risk assessment tool for ISO 27001 certification” Copyright © Vigilant Software Ltd 2007 = Availability, Confidentiality and Integrity of Data = Compliance = Peace of Mind Are you aware that… • 87% of UK businesses today are highly dependant on electronic information and the systems that process it • 94% of businesses had a security incident last year • The UK Cabinet Office requires all central government departments to appoint a Senior Information Risk Owner at Board level • The ODPM is actively encouraging local government to meet national standards for information security IN MOST CASES TODAY THE ANSWER WOULD BE …NO! Source: DTI Report “UK's Information Security Breaches Survey 2004”
“The definitive risk assessment tool for ISO 27001 certification” Copyright © Vigilant Software Ltd 2007 = Availability, Confidentiality and Integrity of Data = Compliance = Peace of Mind Introducing ISO 27001 Risk Assessment Tool from v1.0
“The definitive risk assessment tool for ISO 27001 certification” Copyright © Vigilant Software Ltd 2007 = Availability, Confidentiality and Integrity of Data = Compliance = Peace of Mind Vigilant Software Ltd a joint venture company formed by… Top Solutions (UK) Ltd …an award winning market leader in software development for managing opportunities, risks and business continuity and IT Governance Ltd …globally acknowledged as a leading authority on IT governance and information security
“The definitive risk assessment tool for ISO 27001 certification” Copyright © Vigilant Software Ltd 2007 = Availability, Confidentiality and Integrity of Data = Compliance = Peace of Mind WHAT IS ISO 27001? Objective: to align information security management with business compliance and risk reduction objectives • Focuses on the availability, confidentiality and integrity of organisational information; and only on those risks relevant to the business justified financially & commercially through a risk assessment • ISO 27001 is a management standard not a technical standard; a key pillar of corporate governance & best practice • ISO 27001 is the standard for ISMS (Information Security Management System) and helps identify, manage and reduce the range of risks to which information is regularly subjected
“The definitive risk assessment tool for ISO 27001 certification” Copyright © Vigilant Software Ltd 2007 = Availability, Confidentiality and Integrity of Data = Compliance = Peace of Mind BENEFITS - ISO 27001 CERTIFICATION • Providing a framework for resolving security issues; focusing only on those relevant to your specific organisation • Enhancing the confidence and perception of your clients, stakeholders and partners • Increasingly become a differentiator in contract tenders • Breeding internal and external confidence in the management of risk within your organisation • Increasing security awareness throughout the business via staff training and involvement • Helping develop best practice • Helping adherence to the Standard proving business continuity is managed professionally and vigilantly in the event of a catastrophe continued…
“The definitive risk assessment tool for ISO 27001 certification” Copyright © Vigilant Software Ltd 2007 = Availability, Confidentiality and Integrity of Data = Compliance = Peace of Mind • Risk assessments are central to initial / ongoing ISO 27001 certification they • …must be carried out in line with the specific steps set out in the Standard • …must be carried out at individual asset level with a structured analysis of threats, vulnerabilities and impacts to acceptable levels of risk • …must be recorded and repeat assessments must give comparable results • VSRisk is an outstanding product that • …was designed with the user in mind • …automates and simplifies the user experience of this essential process • …offers online support and feedback as standard BENEFITS - ISO 27001 CERTIFICATION (CONTINUED)
“The definitive risk assessment tool for ISO 27001 certification” Copyright © Vigilant Software Ltd 2007 = Availability, Confidentiality and Integrity of Data = Compliance = Peace of Mind vsRisk: Unique Features • Automates and delivers an ISO/IEC 27001-compliant risk assessment • Uniquely, can assess confidentiality, integrity & availability for each of business, legal and contractual aspects of information assets – as required by ISO 27001 • Comprehensive best-practice alignment: – Supports ISO/IEC 17799 – Complies with BS7799-3:2006 – Conforms to ISO/IEC TR 13335-3:1998 – Conforms to NIST SP 800-30 – Complies with the UK’s Risk Assessment Standard • Wizard-based approach simplifies and accelerates the risk assessment process; • Integrated, regularly updated, BS7799-3 compliant threat and vulnerability databases;
“The definitive risk assessment tool for ISO 27001 certification” Copyright © Vigilant Software Ltd 2007 = Availability, Confidentiality and Integrity of Data = Compliance = Peace of Mind KEY FEATURES • Asset by asset ID of threats and vulnerabilities • A process to assign all relevant ISO 27001 Annex A controls • Easily import additional controls to deal with additional risks • Integrated threats and vulnerability databases • These databases are continually updated to ensure that they are the most up to date available anywhere with one year of free updates built into price • Customisable management scale and risk acceptance criteria • Helps define the scope and business requirements, policy and objectives for the ISMS • Wizard-based approach to simply and accelerate the process for undertaking risk assessments • Produces an audit-ready Statement of Applicability • Detailed gap analysis helps drive forward the risk treatment plan
“The definitive risk assessment tool for ISO 27001 certification” Copyright © Vigilant Software Ltd 2007 = Availability, Confidentiality and Integrity of Data = Compliance = Peace of Mind KEY FEATURES (continued) • Integrated audit trail and comparative history • Helps develop an ISMS asset inventory • Capture business, legal and contractual requirements against each asset • Ability to assess confidentiality, integrity and availability against each asset • Inbuilt intuitive help feature • Asset monitor allows asset owners to import and export asset information • Backup and restore capability • Simplifies a business-critical but complex task – meaning external training not required
“The definitive risk assessment tool for ISO 27001 certification” Copyright © Vigilant Software Ltd 2007 = Availability, Confidentiality and Integrity of Data = Compliance = Peace of Mind • Supports and complies with ISO 27001, ISO 17799 and BS7799-3 information security and risk assessment standards • Customisable by client to meet specific needs when introducing new risks, vulnerabilities and controls without the additional cost of involving consultants or developers • Control deficiencies quickly identified by integrated Gap Analysis tool preventing costly failures downstream…….if sufficient controls are not robust enough then Gap Analysis alerts client of this situation • Highly searchable audit trail and version tracking ensuring the right information is quickly accessible providing mandatory compliance feature plus huge savings in time and cost • Leads to better informed decision making; impacting on performance, continuity, profitability and business value • Protects integrity and reputation with minimum implementation and training……..increasing confidence of suppliers and customers at affordable cost GENERIC BENEFITS
“The definitive risk assessment tool for ISO 27001 certification” Copyright © Vigilant Software Ltd 2007 = Availability, Confidentiality and Integrity of Data = Compliance = Peace of Mind • Software generates consistent results in line with compliance requirements………ISO27001 involves regular continuous assessment • Associated support available from the industry experts as VSRisk is a tool developed by acknowledged risk management experts • Facilitates asset management via asset inventory build…….spin-off benefit of asset inventory for other purposes e.g. investment planning, auditing, hardware security etc • Asset inventory is built automatically by involving all asset owners in the business or organisation…….introduces benefit of risk appreciation and ownership throughout the organisation • Archived results uniquely make the tool’s output comparable and reproducible ensuring compliance and significant time savings GENERIC BENEFITS (continued)
“The definitive risk assessment tool for ISO 27001 certification” Copyright © Vigilant Software Ltd 2007 = Availability, Confidentiality and Integrity of Data = Compliance = Peace of Mind If you have any questions or require a demonstration please phone… 0845 070 1750 or email… servicecentre@itgovernance.co.uk

Recommended

The importance of information security risk management
The importance of information security risk managementThe importance of information security risk management
The importance of information security risk managementMichael Francis
 
The Importance of Risk Management
The Importance of Risk ManagementThe Importance of Risk Management
The Importance of Risk ManagementVigilant Software
 
Why ISO27001/ISO27005 for my organisation
Why ISO27001/ISO27005 for my organisationWhy ISO27001/ISO27005 for my organisation
Why ISO27001/ISO27005 for my organisationMichael Francis
 
Why ISO27001 For My Organisation
Why ISO27001 For My OrganisationWhy ISO27001 For My Organisation
Why ISO27001 For My OrganisationVigilant Software
 
Maintaining and updating your risk assessment using vsRisk
Maintaining and updating your risk assessment using vsRiskMaintaining and updating your risk assessment using vsRisk
Maintaining and updating your risk assessment using vsRiskVigilant Software
 
Maintaining and updating your risk assessment using vsRisk
Maintaining and updating your risk assessment using vsRiskMaintaining and updating your risk assessment using vsRisk
Maintaining and updating your risk assessment using vsRiskMichael Francis
 
Using vsRisk to carry out a risk assessment
Using vsRisk to carry out a risk assessmentUsing vsRisk to carry out a risk assessment
Using vsRisk to carry out a risk assessmentMichael Francis
 
ISO 27001
ISO 27001ISO 27001
ISO 27001n|u - The Open Security Community
 

Recommended

The importance of information security risk management
The importance of information security risk managementThe importance of information security risk management
The importance of information security risk managementMichael Francis
 
The Importance of Risk Management
The Importance of Risk ManagementThe Importance of Risk Management
The Importance of Risk ManagementVigilant Software
 
Why ISO27001/ISO27005 for my organisation
Why ISO27001/ISO27005 for my organisationWhy ISO27001/ISO27005 for my organisation
Why ISO27001/ISO27005 for my organisationMichael Francis
 
Why ISO27001 For My Organisation
Why ISO27001 For My OrganisationWhy ISO27001 For My Organisation
Why ISO27001 For My OrganisationVigilant Software
 
Maintaining and updating your risk assessment using vsRisk
Maintaining and updating your risk assessment using vsRiskMaintaining and updating your risk assessment using vsRisk
Maintaining and updating your risk assessment using vsRiskVigilant Software
 
Maintaining and updating your risk assessment using vsRisk
Maintaining and updating your risk assessment using vsRiskMaintaining and updating your risk assessment using vsRisk
Maintaining and updating your risk assessment using vsRiskMichael Francis
 
Using vsRisk to carry out a risk assessment
Using vsRisk to carry out a risk assessmentUsing vsRisk to carry out a risk assessment
Using vsRisk to carry out a risk assessmentMichael Francis
 
ISO 27001
ISO 27001ISO 27001
ISO 27001n|u - The Open Security Community
 
Cyber Security Management
Cyber Security ManagementCyber Security Management
Cyber Security ManagementIT Governance Ltd
 
Whitepaper iso 27001_isms | All about ISO 27001
Whitepaper iso 27001_isms | All about ISO 27001Whitepaper iso 27001_isms | All about ISO 27001
Whitepaper iso 27001_isms | All about ISO 27001Chandan Singh Ghodela
 
A Comprehensive Guide To Information Security Excellence ISO 27001 Certificat...
A Comprehensive Guide To Information Security Excellence ISO 27001 Certificat...A Comprehensive Guide To Information Security Excellence ISO 27001 Certificat...
A Comprehensive Guide To Information Security Excellence ISO 27001 Certificat...Tromenz Learning
 
NQA Your Complete Guide to ISO 27001
NQA Your Complete Guide to ISO 27001NQA Your Complete Guide to ISO 27001
NQA Your Complete Guide to ISO 27001NA Putra
 
NQA Your Complete Guide to ISO 27001
NQA Your Complete Guide to ISO 27001NQA Your Complete Guide to ISO 27001
NQA Your Complete Guide to ISO 27001NQA
 
Iso 27001 isms - white paper
Iso 27001 isms - white paperIso 27001 isms - white paper
Iso 27001 isms - white paperLakshy Management Consultant Pvt Ltd
 
ISO 27001 2002 Update Webinar.pdf
ISO 27001 2002 Update Webinar.pdfISO 27001 2002 Update Webinar.pdf
ISO 27001 2002 Update Webinar.pdfControlCase
 
iso 27001 certification
iso 27001 certificationiso 27001 certification
iso 27001 certificationdenieljulian79
 
G12: Implementation to Business Value
G12: Implementation to Business ValueG12: Implementation to Business Value
G12: Implementation to Business ValueHyTrust
 
Cyber security service portfolio of Future Data Ltd
Cyber security service portfolio of Future Data LtdCyber security service portfolio of Future Data Ltd
Cyber security service portfolio of Future Data LtdSabrina Chan
 
english_bok_ismp_202306.pptx
english_bok_ismp_202306.pptxenglish_bok_ismp_202306.pptx
english_bok_ismp_202306.pptxssuser00d6eb
 
Open text security services catalog
Open text security services catalogOpen text security services catalog
Open text security services catalogMarc St-Pierre
 
ISO/IEC 27001:2022 (Information Security Management Systems) Awareness Training
ISO/IEC 27001:2022 (Information Security Management Systems) Awareness TrainingISO/IEC 27001:2022 (Information Security Management Systems) Awareness Training
ISO/IEC 27001:2022 (Information Security Management Systems) Awareness TrainingOperational Excellence Consulting
 
ISO 27001 Certification What You Need to Know to Get Started.pdf
ISO 27001 Certification What You Need to Know to Get Started.pdfISO 27001 Certification What You Need to Know to Get Started.pdf
ISO 27001 Certification What You Need to Know to Get Started.pdfOFFICE
 
GDPR compliance and information security: Reducing data breach risks
GDPR compliance and information security: Reducing data breach risksGDPR compliance and information security: Reducing data breach risks
GDPR compliance and information security: Reducing data breach risksIT Governance Ltd
 
we45 ISO-27001 Case Study
we45 ISO-27001 Case Studywe45 ISO-27001 Case Study
we45 ISO-27001 Case Studywe45
 
ePlus Managed Security Services
ePlus Managed Security ServicesePlus Managed Security Services
ePlus Managed Security ServicesePlus
 
Introduction to ISO 27001 Certification
Introduction to ISO 27001 CertificationIntroduction to ISO 27001 Certification
Introduction to ISO 27001 CertificationIBEX SYSTEMS
 
ISO 27001 certification services providers In Mohali
ISO 27001 certification services providers In MohaliISO 27001 certification services providers In Mohali
ISO 27001 certification services providers In MohaliPentagon  Infosec
 
Achieving ISO 27001 Certification.pdf
Achieving ISO 27001 Certification.pdfAchieving ISO 27001 Certification.pdf
Achieving ISO 27001 Certification.pdfmicroteklearning21
 
Corporate Profile 47Billion Information Technology
Corporate Profile 47Billion Information TechnologyCorporate Profile 47Billion Information Technology
Corporate Profile 47Billion Information TechnologyData Analytics Company - 47Billion Inc.
 
Pitch Deck Teardown: Geodesic.Life's $500k Pre-seed deck
Pitch Deck Teardown: Geodesic.Life's $500k Pre-seed deckPitch Deck Teardown: Geodesic.Life's $500k Pre-seed deck
Pitch Deck Teardown: Geodesic.Life's $500k Pre-seed deckHajeJanKamps
 

More Related Content

Similar to ISO 27001 Risk Assessment Software

Cyber Security Management
Cyber Security ManagementCyber Security Management
Cyber Security ManagementIT Governance Ltd
 
Whitepaper iso 27001_isms | All about ISO 27001
Whitepaper iso 27001_isms | All about ISO 27001Whitepaper iso 27001_isms | All about ISO 27001
Whitepaper iso 27001_isms | All about ISO 27001Chandan Singh Ghodela
 
A Comprehensive Guide To Information Security Excellence ISO 27001 Certificat...
A Comprehensive Guide To Information Security Excellence ISO 27001 Certificat...A Comprehensive Guide To Information Security Excellence ISO 27001 Certificat...
A Comprehensive Guide To Information Security Excellence ISO 27001 Certificat...Tromenz Learning
 
NQA Your Complete Guide to ISO 27001
NQA Your Complete Guide to ISO 27001NQA Your Complete Guide to ISO 27001
NQA Your Complete Guide to ISO 27001NA Putra
 
NQA Your Complete Guide to ISO 27001
NQA Your Complete Guide to ISO 27001NQA Your Complete Guide to ISO 27001
NQA Your Complete Guide to ISO 27001NQA
 
ISO 27001 2002 Update Webinar.pdf
ISO 27001 2002 Update Webinar.pdfISO 27001 2002 Update Webinar.pdf
ISO 27001 2002 Update Webinar.pdfControlCase
 
iso 27001 certification
iso 27001 certificationiso 27001 certification
iso 27001 certificationdenieljulian79
 
G12: Implementation to Business Value
G12: Implementation to Business ValueG12: Implementation to Business Value
G12: Implementation to Business ValueHyTrust
 
Cyber security service portfolio of Future Data Ltd
Cyber security service portfolio of Future Data LtdCyber security service portfolio of Future Data Ltd
Cyber security service portfolio of Future Data LtdSabrina Chan
 
english_bok_ismp_202306.pptx
english_bok_ismp_202306.pptxenglish_bok_ismp_202306.pptx
english_bok_ismp_202306.pptxssuser00d6eb
 
Open text security services catalog
Open text security services catalogOpen text security services catalog
Open text security services catalogMarc St-Pierre
 
ISO/IEC 27001:2022 (Information Security Management Systems) Awareness Training
ISO/IEC 27001:2022 (Information Security Management Systems) Awareness TrainingISO/IEC 27001:2022 (Information Security Management Systems) Awareness Training
ISO/IEC 27001:2022 (Information Security Management Systems) Awareness TrainingOperational Excellence Consulting
 
ISO 27001 Certification What You Need to Know to Get Started.pdf
ISO 27001 Certification What You Need to Know to Get Started.pdfISO 27001 Certification What You Need to Know to Get Started.pdf
ISO 27001 Certification What You Need to Know to Get Started.pdfOFFICE
 
GDPR compliance and information security: Reducing data breach risks
GDPR compliance and information security: Reducing data breach risksGDPR compliance and information security: Reducing data breach risks
GDPR compliance and information security: Reducing data breach risksIT Governance Ltd
 
we45 ISO-27001 Case Study
we45 ISO-27001 Case Studywe45 ISO-27001 Case Study
we45 ISO-27001 Case Studywe45
 
ePlus Managed Security Services
ePlus Managed Security ServicesePlus Managed Security Services
ePlus Managed Security ServicesePlus
 
Introduction to ISO 27001 Certification
Introduction to ISO 27001 CertificationIntroduction to ISO 27001 Certification
Introduction to ISO 27001 CertificationIBEX SYSTEMS
 
ISO 27001 certification services providers In Mohali
ISO 27001 certification services providers In MohaliISO 27001 certification services providers In Mohali
ISO 27001 certification services providers In MohaliPentagon  Infosec
 
Achieving ISO 27001 Certification.pdf
Achieving ISO 27001 Certification.pdfAchieving ISO 27001 Certification.pdf
Achieving ISO 27001 Certification.pdfmicroteklearning21
 

Similar to ISO 27001 Risk Assessment Software (20)

Cyber Security Management
Cyber Security ManagementCyber Security Management
Cyber Security Management
 
Whitepaper iso 27001_isms | All about ISO 27001
Whitepaper iso 27001_isms | All about ISO 27001Whitepaper iso 27001_isms | All about ISO 27001
Whitepaper iso 27001_isms | All about ISO 27001
 
A Comprehensive Guide To Information Security Excellence ISO 27001 Certificat...
A Comprehensive Guide To Information Security Excellence ISO 27001 Certificat...A Comprehensive Guide To Information Security Excellence ISO 27001 Certificat...
A Comprehensive Guide To Information Security Excellence ISO 27001 Certificat...
 
NQA Your Complete Guide to ISO 27001
NQA Your Complete Guide to ISO 27001NQA Your Complete Guide to ISO 27001
NQA Your Complete Guide to ISO 27001
 
NQA Your Complete Guide to ISO 27001
NQA Your Complete Guide to ISO 27001NQA Your Complete Guide to ISO 27001
NQA Your Complete Guide to ISO 27001
 
Iso 27001 isms - white paper
Iso 27001 isms - white paperIso 27001 isms - white paper
Iso 27001 isms - white paper
 
ISO 27001 2002 Update Webinar.pdf
ISO 27001 2002 Update Webinar.pdfISO 27001 2002 Update Webinar.pdf
ISO 27001 2002 Update Webinar.pdf
 
iso 27001 certification
iso 27001 certificationiso 27001 certification
iso 27001 certification
 
G12: Implementation to Business Value
G12: Implementation to Business ValueG12: Implementation to Business Value
G12: Implementation to Business Value
 
Cyber security service portfolio of Future Data Ltd
Cyber security service portfolio of Future Data LtdCyber security service portfolio of Future Data Ltd
Cyber security service portfolio of Future Data Ltd
 
english_bok_ismp_202306.pptx
english_bok_ismp_202306.pptxenglish_bok_ismp_202306.pptx
english_bok_ismp_202306.pptx
 
Open text security services catalog
Open text security services catalogOpen text security services catalog
Open text security services catalog
 
ISO/IEC 27001:2022 (Information Security Management Systems) Awareness Training
ISO/IEC 27001:2022 (Information Security Management Systems) Awareness TrainingISO/IEC 27001:2022 (Information Security Management Systems) Awareness Training
ISO/IEC 27001:2022 (Information Security Management Systems) Awareness Training
 
ISO 27001 Certification What You Need to Know to Get Started.pdf
ISO 27001 Certification What You Need to Know to Get Started.pdfISO 27001 Certification What You Need to Know to Get Started.pdf
ISO 27001 Certification What You Need to Know to Get Started.pdf
 
GDPR compliance and information security: Reducing data breach risks
GDPR compliance and information security: Reducing data breach risksGDPR compliance and information security: Reducing data breach risks
GDPR compliance and information security: Reducing data breach risks
 
we45 ISO-27001 Case Study
we45 ISO-27001 Case Studywe45 ISO-27001 Case Study
we45 ISO-27001 Case Study
 
ePlus Managed Security Services
ePlus Managed Security ServicesePlus Managed Security Services
ePlus Managed Security Services
 
Introduction to ISO 27001 Certification
Introduction to ISO 27001 CertificationIntroduction to ISO 27001 Certification
Introduction to ISO 27001 Certification
 
ISO 27001 certification services providers In Mohali
ISO 27001 certification services providers In MohaliISO 27001 certification services providers In Mohali
ISO 27001 certification services providers In Mohali
 
Achieving ISO 27001 Certification.pdf
Achieving ISO 27001 Certification.pdfAchieving ISO 27001 Certification.pdf
Achieving ISO 27001 Certification.pdf
 

Recently uploaded

Pitch Deck Teardown: Geodesic.Life's $500k Pre-seed deck
Pitch Deck Teardown: Geodesic.Life's $500k Pre-seed deckPitch Deck Teardown: Geodesic.Life's $500k Pre-seed deck
Pitch Deck Teardown: Geodesic.Life's $500k Pre-seed deckHajeJanKamps
 
Organizational Structure Running A Successful Business
Organizational Structure Running A Successful BusinessOrganizational Structure Running A Successful Business
Organizational Structure Running A Successful BusinessSeta Wicaksana
 
Lowrate Call Girls In Sector 18 Noida ❤️8860477959 Escorts 100% Genuine Servi...
Lowrate Call Girls In Sector 18 Noida ❤️8860477959 Escorts 100% Genuine Servi...Lowrate Call Girls In Sector 18 Noida ❤️8860477959 Escorts 100% Genuine Servi...
Lowrate Call Girls In Sector 18 Noida ❤️8860477959 Escorts 100% Genuine Servi...lizamodels9
 
MAHA Global and IPR: Do Actions Speak Louder Than Words?
MAHA Global and IPR: Do Actions Speak Louder Than Words?MAHA Global and IPR: Do Actions Speak Louder Than Words?
MAHA Global and IPR: Do Actions Speak Louder Than Words?Olivia Kresic
 
Global Scenario On Sustainable and Resilient Coconut Industry by Dr. Jelfina...
Global Scenario On Sustainable and Resilient Coconut Industry by Dr. Jelfina...Global Scenario On Sustainable and Resilient Coconut Industry by Dr. Jelfina...
Global Scenario On Sustainable and Resilient Coconut Industry by Dr. Jelfina...ictsugar
 
Flow Your Strategy at Flight Levels Day 2024
Flow Your Strategy at Flight Levels Day 2024Flow Your Strategy at Flight Levels Day 2024
Flow Your Strategy at Flight Levels Day 2024Kirill Klimov
 
India Consumer 2024 Redacted Sample Report
India Consumer 2024 Redacted Sample ReportIndia Consumer 2024 Redacted Sample Report
India Consumer 2024 Redacted Sample ReportMintel Group
 
BEST Call Girls In Greater Noida ✨ 9773824855 ✨ Escorts Service In Delhi Ncr,
BEST Call Girls In Greater Noida ✨ 9773824855 ✨ Escorts Service In Delhi Ncr,BEST Call Girls In Greater Noida ✨ 9773824855 ✨ Escorts Service In Delhi Ncr,
BEST Call Girls In Greater Noida ✨ 9773824855 ✨ Escorts Service In Delhi Ncr,noida100girls
 
Marketing Management Business Plan_My Sweet Creations
Marketing Management Business Plan_My Sweet CreationsMarketing Management Business Plan_My Sweet Creations
Marketing Management Business Plan_My Sweet Creationsnakalysalcedo61
 
Market Sizes Sample Report - 2024 Edition
Market Sizes Sample Report - 2024 EditionMarket Sizes Sample Report - 2024 Edition
Market Sizes Sample Report - 2024 EditionMintel Group
 
8447779800, Low rate Call girls in Saket Delhi NCR
8447779800, Low rate Call girls in Saket Delhi NCR8447779800, Low rate Call girls in Saket Delhi NCR
8447779800, Low rate Call girls in Saket Delhi NCRashishs7044
 
8447779800, Low rate Call girls in Tughlakabad Delhi NCR
8447779800, Low rate Call girls in Tughlakabad Delhi NCR8447779800, Low rate Call girls in Tughlakabad Delhi NCR
8447779800, Low rate Call girls in Tughlakabad Delhi NCRashishs7044
 
BEST Call Girls In Old Faridabad ✨ 9773824855 ✨ Escorts Service In Delhi Ncr,
BEST Call Girls In Old Faridabad ✨ 9773824855 ✨ Escorts Service In Delhi Ncr,BEST Call Girls In Old Faridabad ✨ 9773824855 ✨ Escorts Service In Delhi Ncr,
BEST Call Girls In Old Faridabad ✨ 9773824855 ✨ Escorts Service In Delhi Ncr,noida100girls
 
Keppel Ltd. 1Q 2024 Business Update Presentation Slides
Keppel Ltd. 1Q 2024 Business Update Presentation SlidesKeppel Ltd. 1Q 2024 Business Update Presentation Slides
Keppel Ltd. 1Q 2024 Business Update Presentation SlidesKeppelCorporation
 
Call Girls In Connaught Place Delhi ❤️88604**77959_Russian 100% Genuine Escor...
Call Girls In Connaught Place Delhi ❤️88604**77959_Russian 100% Genuine Escor...Call Girls In Connaught Place Delhi ❤️88604**77959_Russian 100% Genuine Escor...
Call Girls In Connaught Place Delhi ❤️88604**77959_Russian 100% Genuine Escor...lizamodels9
 
Call Girls In Radisson Blu Hotel New Delhi Paschim Vihar ❤️8860477959 Escorts...
Call Girls In Radisson Blu Hotel New Delhi Paschim Vihar ❤️8860477959 Escorts...Call Girls In Radisson Blu Hotel New Delhi Paschim Vihar ❤️8860477959 Escorts...
Call Girls In Radisson Blu Hotel New Delhi Paschim Vihar ❤️8860477959 Escorts...lizamodels9
 
Case study on tata clothing brand zudio in detail
Case study on tata clothing brand zudio in detailCase study on tata clothing brand zudio in detail
Case study on tata clothing brand zudio in detailAriel592675
 
Call Girls In Sikandarpur Gurgaon ❤️8860477959_Russian 100% Genuine Escorts I...
Call Girls In Sikandarpur Gurgaon ❤️8860477959_Russian 100% Genuine Escorts I...Call Girls In Sikandarpur Gurgaon ❤️8860477959_Russian 100% Genuine Escorts I...
Call Girls In Sikandarpur Gurgaon ❤️8860477959_Russian 100% Genuine Escorts I...lizamodels9
 

Recently uploaded (20)

Corporate Profile 47Billion Information Technology
Corporate Profile 47Billion Information TechnologyCorporate Profile 47Billion Information Technology
Corporate Profile 47Billion Information Technology
 
Pitch Deck Teardown: Geodesic.Life's $500k Pre-seed deck
Pitch Deck Teardown: Geodesic.Life's $500k Pre-seed deckPitch Deck Teardown: Geodesic.Life's $500k Pre-seed deck
Pitch Deck Teardown: Geodesic.Life's $500k Pre-seed deck
 
Organizational Structure Running A Successful Business
Organizational Structure Running A Successful BusinessOrganizational Structure Running A Successful Business
Organizational Structure Running A Successful Business
 
Lowrate Call Girls In Sector 18 Noida ❤️8860477959 Escorts 100% Genuine Servi...
Lowrate Call Girls In Sector 18 Noida ❤️8860477959 Escorts 100% Genuine Servi...Lowrate Call Girls In Sector 18 Noida ❤️8860477959 Escorts 100% Genuine Servi...
Lowrate Call Girls In Sector 18 Noida ❤️8860477959 Escorts 100% Genuine Servi...
 
MAHA Global and IPR: Do Actions Speak Louder Than Words?
MAHA Global and IPR: Do Actions Speak Louder Than Words?MAHA Global and IPR: Do Actions Speak Louder Than Words?
MAHA Global and IPR: Do Actions Speak Louder Than Words?
 
Global Scenario On Sustainable and Resilient Coconut Industry by Dr. Jelfina...
Global Scenario On Sustainable and Resilient Coconut Industry by Dr. Jelfina...Global Scenario On Sustainable and Resilient Coconut Industry by Dr. Jelfina...
Global Scenario On Sustainable and Resilient Coconut Industry by Dr. Jelfina...
 
Flow Your Strategy at Flight Levels Day 2024
Flow Your Strategy at Flight Levels Day 2024Flow Your Strategy at Flight Levels Day 2024
Flow Your Strategy at Flight Levels Day 2024
 
India Consumer 2024 Redacted Sample Report
India Consumer 2024 Redacted Sample ReportIndia Consumer 2024 Redacted Sample Report
India Consumer 2024 Redacted Sample Report
 
BEST Call Girls In Greater Noida ✨ 9773824855 ✨ Escorts Service In Delhi Ncr,
BEST Call Girls In Greater Noida ✨ 9773824855 ✨ Escorts Service In Delhi Ncr,BEST Call Girls In Greater Noida ✨ 9773824855 ✨ Escorts Service In Delhi Ncr,
BEST Call Girls In Greater Noida ✨ 9773824855 ✨ Escorts Service In Delhi Ncr,
 
Marketing Management Business Plan_My Sweet Creations
Marketing Management Business Plan_My Sweet CreationsMarketing Management Business Plan_My Sweet Creations
Marketing Management Business Plan_My Sweet Creations
 
Market Sizes Sample Report - 2024 Edition
Market Sizes Sample Report - 2024 EditionMarket Sizes Sample Report - 2024 Edition
Market Sizes Sample Report - 2024 Edition
 
8447779800, Low rate Call girls in Saket Delhi NCR
8447779800, Low rate Call girls in Saket Delhi NCR8447779800, Low rate Call girls in Saket Delhi NCR
8447779800, Low rate Call girls in Saket Delhi NCR
 
8447779800, Low rate Call girls in Tughlakabad Delhi NCR
8447779800, Low rate Call girls in Tughlakabad Delhi NCR8447779800, Low rate Call girls in Tughlakabad Delhi NCR
8447779800, Low rate Call girls in Tughlakabad Delhi NCR
 
BEST Call Girls In Old Faridabad ✨ 9773824855 ✨ Escorts Service In Delhi Ncr,
BEST Call Girls In Old Faridabad ✨ 9773824855 ✨ Escorts Service In Delhi Ncr,BEST Call Girls In Old Faridabad ✨ 9773824855 ✨ Escorts Service In Delhi Ncr,
BEST Call Girls In Old Faridabad ✨ 9773824855 ✨ Escorts Service In Delhi Ncr,
 
Keppel Ltd. 1Q 2024 Business Update Presentation Slides
Keppel Ltd. 1Q 2024 Business Update Presentation SlidesKeppel Ltd. 1Q 2024 Business Update Presentation Slides
Keppel Ltd. 1Q 2024 Business Update Presentation Slides
 
Call Girls In Connaught Place Delhi ❤️88604**77959_Russian 100% Genuine Escor...
Call Girls In Connaught Place Delhi ❤️88604**77959_Russian 100% Genuine Escor...Call Girls In Connaught Place Delhi ❤️88604**77959_Russian 100% Genuine Escor...
Call Girls In Connaught Place Delhi ❤️88604**77959_Russian 100% Genuine Escor...
 
Call Girls In Radisson Blu Hotel New Delhi Paschim Vihar ❤️8860477959 Escorts...
Call Girls In Radisson Blu Hotel New Delhi Paschim Vihar ❤️8860477959 Escorts...Call Girls In Radisson Blu Hotel New Delhi Paschim Vihar ❤️8860477959 Escorts...
Call Girls In Radisson Blu Hotel New Delhi Paschim Vihar ❤️8860477959 Escorts...
 
Case study on tata clothing brand zudio in detail
Case study on tata clothing brand zudio in detailCase study on tata clothing brand zudio in detail
Case study on tata clothing brand zudio in detail
 
Call Girls In Sikandarpur Gurgaon ❤️8860477959_Russian 100% Genuine Escorts I...
Call Girls In Sikandarpur Gurgaon ❤️8860477959_Russian 100% Genuine Escorts I...Call Girls In Sikandarpur Gurgaon ❤️8860477959_Russian 100% Genuine Escorts I...
Call Girls In Sikandarpur Gurgaon ❤️8860477959_Russian 100% Genuine Escorts I...
 
Japan IT Week 2024 Brochure by 47Billion (English)
Japan IT Week 2024 Brochure by 47Billion (English)Japan IT Week 2024 Brochure by 47Billion (English)
Japan IT Week 2024 Brochure by 47Billion (English)
 

ISO 27001 Risk Assessment Software

  • 1. “The definitive risk assessment tool for ISO 27001 certification” Copyright © Vigilant Software Ltd 2007 = Availability, Confidentiality and Integrity of Data = Compliance = Peace of Mind IS YOUR ORGANISATION’S INFORMATION SECURE?
  • 2. “The definitive risk assessment tool for ISO 27001 certification” Copyright © Vigilant Software Ltd 2007 = Availability, Confidentiality and Integrity of Data = Compliance = Peace of Mind WOULD YOU COMPLY TODAY TO THE ISO 27001 STANDARD?
  • 3. “The definitive risk assessment tool for ISO 27001 certification” Copyright © Vigilant Software Ltd 2007 = Availability, Confidentiality and Integrity of Data = Compliance = Peace of Mind Are you aware that… • 87% of UK businesses today are highly dependant on electronic information and the systems that process it • 94% of businesses had a security incident last year • The UK Cabinet Office requires all central government departments to appoint a Senior Information Risk Owner at Board level • The ODPM is actively encouraging local government to meet national standards for information security IN MOST CASES TODAY THE ANSWER WOULD BE …NO! Source: DTI Report “UK's Information Security Breaches Survey 2004”
  • 4. “The definitive risk assessment tool for ISO 27001 certification” Copyright © Vigilant Software Ltd 2007 = Availability, Confidentiality and Integrity of Data = Compliance = Peace of Mind Introducing ISO 27001 Risk Assessment Tool from v1.0
  • 5. “The definitive risk assessment tool for ISO 27001 certification” Copyright © Vigilant Software Ltd 2007 = Availability, Confidentiality and Integrity of Data = Compliance = Peace of Mind Vigilant Software Ltd a joint venture company formed by… Top Solutions (UK) Ltd …an award winning market leader in software development for managing opportunities, risks and business continuity and IT Governance Ltd …globally acknowledged as a leading authority on IT governance and information security
  • 6. “The definitive risk assessment tool for ISO 27001 certification” Copyright © Vigilant Software Ltd 2007 = Availability, Confidentiality and Integrity of Data = Compliance = Peace of Mind WHAT IS ISO 27001? Objective: to align information security management with business compliance and risk reduction objectives • Focuses on the availability, confidentiality and integrity of organisational information; and only on those risks relevant to the business justified financially & commercially through a risk assessment • ISO 27001 is a management standard not a technical standard; a key pillar of corporate governance & best practice • ISO 27001 is the standard for ISMS (Information Security Management System) and helps identify, manage and reduce the range of risks to which information is regularly subjected
  • 7. “The definitive risk assessment tool for ISO 27001 certification” Copyright © Vigilant Software Ltd 2007 = Availability, Confidentiality and Integrity of Data = Compliance = Peace of Mind BENEFITS - ISO 27001 CERTIFICATION • Providing a framework for resolving security issues; focusing only on those relevant to your specific organisation • Enhancing the confidence and perception of your clients, stakeholders and partners • Increasingly become a differentiator in contract tenders • Breeding internal and external confidence in the management of risk within your organisation • Increasing security awareness throughout the business via staff training and involvement • Helping develop best practice • Helping adherence to the Standard proving business continuity is managed professionally and vigilantly in the event of a catastrophe continued…
  • 8. “The definitive risk assessment tool for ISO 27001 certification” Copyright © Vigilant Software Ltd 2007 = Availability, Confidentiality and Integrity of Data = Compliance = Peace of Mind • Risk assessments are central to initial / ongoing ISO 27001 certification they • …must be carried out in line with the specific steps set out in the Standard • …must be carried out at individual asset level with a structured analysis of threats, vulnerabilities and impacts to acceptable levels of risk • …must be recorded and repeat assessments must give comparable results • VSRisk is an outstanding product that • …was designed with the user in mind • …automates and simplifies the user experience of this essential process • …offers online support and feedback as standard BENEFITS - ISO 27001 CERTIFICATION (CONTINUED)
  • 9. “The definitive risk assessment tool for ISO 27001 certification” Copyright © Vigilant Software Ltd 2007 = Availability, Confidentiality and Integrity of Data = Compliance = Peace of Mind vsRisk: Unique Features • Automates and delivers an ISO/IEC 27001-compliant risk assessment • Uniquely, can assess confidentiality, integrity & availability for each of business, legal and contractual aspects of information assets – as required by ISO 27001 • Comprehensive best-practice alignment: – Supports ISO/IEC 17799 – Complies with BS7799-3:2006 – Conforms to ISO/IEC TR 13335-3:1998 – Conforms to NIST SP 800-30 – Complies with the UK’s Risk Assessment Standard • Wizard-based approach simplifies and accelerates the risk assessment process; • Integrated, regularly updated, BS7799-3 compliant threat and vulnerability databases;
  • 10. “The definitive risk assessment tool for ISO 27001 certification” Copyright © Vigilant Software Ltd 2007 = Availability, Confidentiality and Integrity of Data = Compliance = Peace of Mind KEY FEATURES • Asset by asset ID of threats and vulnerabilities • A process to assign all relevant ISO 27001 Annex A controls • Easily import additional controls to deal with additional risks • Integrated threats and vulnerability databases • These databases are continually updated to ensure that they are the most up to date available anywhere with one year of free updates built into price • Customisable management scale and risk acceptance criteria • Helps define the scope and business requirements, policy and objectives for the ISMS • Wizard-based approach to simply and accelerate the process for undertaking risk assessments • Produces an audit-ready Statement of Applicability • Detailed gap analysis helps drive forward the risk treatment plan
  • 11. “The definitive risk assessment tool for ISO 27001 certification” Copyright © Vigilant Software Ltd 2007 = Availability, Confidentiality and Integrity of Data = Compliance = Peace of Mind KEY FEATURES (continued) • Integrated audit trail and comparative history • Helps develop an ISMS asset inventory • Capture business, legal and contractual requirements against each asset • Ability to assess confidentiality, integrity and availability against each asset • Inbuilt intuitive help feature • Asset monitor allows asset owners to import and export asset information • Backup and restore capability • Simplifies a business-critical but complex task – meaning external training not required
  • 12. “The definitive risk assessment tool for ISO 27001 certification” Copyright © Vigilant Software Ltd 2007 = Availability, Confidentiality and Integrity of Data = Compliance = Peace of Mind • Supports and complies with ISO 27001, ISO 17799 and BS7799-3 information security and risk assessment standards • Customisable by client to meet specific needs when introducing new risks, vulnerabilities and controls without the additional cost of involving consultants or developers • Control deficiencies quickly identified by integrated Gap Analysis tool preventing costly failures downstream…….if sufficient controls are not robust enough then Gap Analysis alerts client of this situation • Highly searchable audit trail and version tracking ensuring the right information is quickly accessible providing mandatory compliance feature plus huge savings in time and cost • Leads to better informed decision making; impacting on performance, continuity, profitability and business value • Protects integrity and reputation with minimum implementation and training……..increasing confidence of suppliers and customers at affordable cost GENERIC BENEFITS
  • 13. “The definitive risk assessment tool for ISO 27001 certification” Copyright © Vigilant Software Ltd 2007 = Availability, Confidentiality and Integrity of Data = Compliance = Peace of Mind • Software generates consistent results in line with compliance requirements………ISO27001 involves regular continuous assessment • Associated support available from the industry experts as VSRisk is a tool developed by acknowledged risk management experts • Facilitates asset management via asset inventory build…….spin-off benefit of asset inventory for other purposes e.g. investment planning, auditing, hardware security etc • Asset inventory is built automatically by involving all asset owners in the business or organisation…….introduces benefit of risk appreciation and ownership throughout the organisation • Archived results uniquely make the tool’s output comparable and reproducible ensuring compliance and significant time savings GENERIC BENEFITS (continued)
  • 14. “The definitive risk assessment tool for ISO 27001 certification” Copyright © Vigilant Software Ltd 2007 = Availability, Confidentiality and Integrity of Data = Compliance = Peace of Mind If you have any questions or require a demonstration please phone… 0845 070 1750 or email… servicecentre@itgovernance.co.uk