jComply Information Security Implementation Module

Products

jComply

Process

Features

Benefits

SaaS

Free Demo

ISIM

Top Downloads

Documents

jComply Brochure

jComply SaaS

Data Sheets

Information Security
Implementation Module

Articles

The Legal Minefield of Data
Protection, 1st October 2009

Changing Science in Compliance
21 January 2009

Case Studies

Singapore Medical Centre
Case Study

Central Markets Case Study

Need For Information Security
Governments, corporates, financial institutions, hospitals, and private businesses produce a great deal of confidential information about their employees, customers, patients, products, research, and financial status. Most of this information is collected, processed and stored on electronic computers and transmitted across networks to other computers, not to mention the information kept on paper. Should confidential information about a business, its customers, finances or new products fall into the wrong hands, such a breach of security could lead to lost business, law suits or even bankruptcy. Protecting confidential information is a corporate requirement, and in many cases also an ethical and legal requirement.

jComply Information Security Implementation Module
Supporting certification towards ISO 27001:2005
This module has been especially designed to help managers implement pre-written security policies based on ISO 27001:2005. Module also includes a library of questions and answers through which the managers can train and test their team thus improving the overall compliance to information security standards and regulations.
By adopting the jComply concepts and that of the Information Security Compliance application in particular demonstrates a commitment by you that all staff and associated contractors have the appropriate training and preparation, based on ISO 27001:2005, for them to handle securely sensitive information internally and externally.

The module consists of two main packs:

1. Pre-written Policies
2. Library of Questions and Answers

Pre-written Policies

The jComply ISIM addresses the following Information security policies based on ISO 27001:2005 Security Policies:

1.   Organisation of Information Security
2.   Asset Classification and Control
3.   Personnel Security
4.   Physical and Environmental Security
5.   Communication and Operation Management
6.   Access Control
7.   System Development and Maintenance
8.   Information Security Incident Management
9.   Business Continuity Management
10. Compliance

Library of Q & A

A complete library of questions and answers is included in the module. These questions and answers are based on the policies already included in the pack. The managers can effectively use these to train and test the company employees thus increasing the company's compliance level with the information securities relevant to the company.

Finally, by implementing and adopting an Information Security Programme, as outlined in jComply, will provide your business with 6 basic business aims:

1.   Strategic alignment of security with business strategy & organisational       objectives
2.   Risk reduction and mitigation of threats to the business
3.   Objectives are met through KPI measurement and monitoring
4.   Increased security awareness
5.   Improved response mechanisms to security incidents and breaches
6.  Assured business continuity and disaster recovery mechanisms