Clockworkisms is a customizable business process management solution aimed at addressing information security governance challenges, such as compliance cost reduction and risk management efficiency. It offers modules for operational security, vulnerability tracking, and risk assessment aligned with standards like ISO27001 and PCI DSS, providing features like automatic scheduling and progress dashboards. The solution is designed for organizations needing to demonstrate effective information security management while achieving cost savings and regulatory compliance.

1. ClockworkISMS … solutions for information security governance What’s your challenge?

2. Your challenge? Need to reduce costs of compliance? Need to remove duplication of effort across multiple external and internal standards? Need greater visibility of progress against schedule for risk assessments with on-demand dashboards? Need better metrics to demonstrate compliance and improvements in risk management? Need to improve timeliness, and remove bottlenecks and delays in managing risks? ClockworkISMS is a lightweight, high quality, customisable business process management solution for the management of information security and compliance requirements

3. ClockworkISMS Modules Here are the typical 3 modules which we deploy Operational Security Deviation against Policy (including renewal scheduling) Vulnerability Tracking Security Alert Tracking … .many other team processes and tasks Risk Assessment Examples include ISO27001, PCI DSS, IT SOX, ITIL Internal Audit Working Papers Self-assessment against internal organisational standards Risk Management Manual or auto-logging of new risks from other modules Full audit trail, scheduling and tracking for Risk Acceptance Risk Remediation tracking, quality review and closure

4. From tactical to strategic… Evidence? Yes Identify opportunities to reduce costs of information security and avoid duplication Evidence? Yes Communication tool across functions and levels – a security conscious culture Evidence? Yes Strategic, risk based approach to information security aligned with business objectives Evidence? Yes Mitigate risks to acceptable level Evidence? Yes Meeting legal and audit requirements Evidence? Yes Protect our brand Documents and Spreadsheets ClockworkISMS Benefits

5. Our target market Organisations who can … achieve significant competitive advantage from improved information security have regulatory, legal or contractual requirements which require them to demonstrate effective information security management require bespoke or customised workflow solutions to implement in-house standards would like to achieve cost savings from improved efficiency and performance

6. Key Features Easy to understand and develop workflow diagrams demonstrating your compliance process Automatic audit trail for each task, process and user Automatic scheduling of tasks to meet the compliance requirements in a timely manner Flexible and informative management dashboards of progress and efficiency including backlog and ‘bottleneck’ reports Easy integration with other databases such as HR, asset inventory, risk management database and many others

7. Just some of the benefits… Reduced cost of compliance through improved efficiency as framework is pre-scripted and automatically controlled Automatic scheduling into work queues for the relevant teams, with email alerting, leading to improved timeliness of risk management tasks Informative business process statistics which allow further process improvement through identification and tracking of key facts On-demand dashboards of progress for improved management control at your fingertips, with customised reporting available to end-users as standard

8. Measure Success Has the IT audit opinion improved? Are policies reviewed in a timely manner and complied with? How well do staff know of the IT Security organisation? Requests and Reports received without chase-ups Value of business projects reviewed for compliance Impact of incidents: cost, impact, internal capability

9. Typical Solutions Travel Industry Challenge: Multiple locations spread across the globe with high costs of travel and review ClockworkISMS Solution: Increased use of self-assessment for low-risk locations attaching audit evidence remotely using web-based solution, allowing greater focus on higher risk hubs Financial Services Challenge: Multiple overlapping standards which required duplication of effort and separate reporting requirements ClockworkISMS Solution: Design of a single customised risk assessment review process which covered all standards, and had automatic filtering of on-demand dashboards

10. Online Demonstration Visit our online demonstrations at www.delaneyconsulting.co.uk or why not ask for an onsite demonstration?

11. Questions Chat to our lead developer directly…. Paul Guckian (020) 8133 2680 [email_address]