Information Security

Do you know where your security risks are? Has your network and infrastructure design been driven from an information security strategy and plan, or simply morphed into its current state as your business has grown and changed over time? Do you know what the impact is to your business should key information systems be compromised?

Information security risks are very real and very present, and they are not always obvious:

• Negligent staff such as programmers, technical architects, testers, and project managers who cause or fail to prevent vulnerabilities
• Disgruntled, untrained, or ignorant employees who make genuine, if naive, human errors, misuse/misconfigure system security functions, and/or ignore security policies and good practices
• Spammers and other obnoxious, self-serving marketers wasting network bandwidth and filling inboxes with junk and malware
• Acts of God -- storms, tornados, floods -- or intentional acts, such as arson, that may disrupt, damage or destroy information assets and services
• Unethical competitors (e.g. using industrial espionage to steal trade secrets, customer lists etc.) or foreign powers targeting commercial and national secrets through espionage, social engineering, physical/network penetration, phishing and/or malware

An ISM Information Security Risk Assessment will provide an independent view of the current state of your organization's information security measures and a clear definition of what needs to be done to achieve and maintain compliance with current best practices and security standards, including COBIT®, ISO27000, and the Federal Information Security Management Act of 2002 (FISMA).

ISM's CISSP-certified consultants can assist your IT professionals in network and security design and planning, combining design knowledge and practical implementation experience to ensure secure physical and virtual architectures. Providing collaborative assistance for clients building or redesigning their networks, ISM consultants recommend industry best practices and help create hardware and software configurations for a secure, scalable, reliable and resilient core infrastructure.

The primary objective of the Integrated Solutions Management Business Impact Analysis (BIA) is to determine the current state of the Business Continuity and Disaster Recovery plans. ISM works across the organization to document the “state of the state”. This comprehensive analysis will assist the organization in making cost-effective decisions regarding the priority of planning activities and implementing workable recovery strategies.

Our Information Security services and solutions include:

• Assessment and Planning
• Solution Evaluation and Technology Selection
• Solution Implementation and Deployment
• Education and Training
• Organizational Change and Communications