IT Security Policy Review

Information Systems Security Policies

Many organisations have Information Security Policies in one form or another. In many cases, the policies tend to be mixed up with procedures and standards and often are in paper format or are randomly saved in various electronic directories in different computer systems depending on who wrote them initially.

Kaon SecurITy Ltd can sort out the wood from the trees and conduct a full review of all your system documentation to ascertain how much of it is actual policy, how much relates to documenting procedures and categorise the rest into standards, configuration details, designs and drawings, specifications etc.

Discover Whether Your Policies Are ISO 27002 Compliant

Some of your Information Systems Security Policies may be ISO 27002 compliant already, but as the standard is a very comprehensive document, it is easy to only partially comply with the requirements or miss sections out completely.

Kaon SecurITy Ltd will conduct a full review of your policies and match each policy statement against the relevant provisions in the ISO 27002 Code of Practice. Once this is achieved a comparative analysis is carried out which highlights areas where your policies are deficient or lacking.

What Do You Receive At The End Of The Process

You are provided with the Policy Review document which shows where each of your policy statements is cross referenced to specific sections of the ISO 27002 standard.

You also receive the full Comparative Analysis document which tells you, in detail, what policy work is required in order to fully comply.

From this information you can decide whether you want to work on further policy development yourself, or Kaon SecurITy Ltd can develop the policies on your behalf.

Enter the IT Policy System Page

How to Get An IT Security Policy Review

How Much Does IT Cost

Work is undertaken on the basis of a fixed price quote and based on the approximate number of hours it will take to do the work.