SECURITY CONSULTING: MEASURES TO INCREASE IT-SECURITY

IT-Security Consulting, IT-Sicherheit Beratung - professionelle Dienstleistung von SEC4YOU Manfred Scholz

In com­pa­ri­son to the IT audit, which aims for a target/performance com­pa­ri­son, the future or neces­sa­ry tar­get sta­te is defi­ned in con­sul­ting. This defi­ned tar­get sta­te can enable cus­to­mers to car­ry out an IT audit in the future and iden­ti­fy cor­re­spon­ding deviations.

An exam­p­le of a secu­ri­ty con­sul­ting acti­vi­ty is the deve­lo­p­ment of bin­ding secu­ri­ty poli­ci­es (man­da­to­ry ins­truc­tions), pro­ce­du­res (defi­ned pro­ces­ses) and gui­de­lines (non-bin­ding recom­men­da­ti­ons for action). Sup­port in defi­ning the “sta­te of the art” for an area of appli­ca­ti­on, e.g. cryp­to­gra­phy, also fits into clas­sic secu­ri­ty consulting.

Secu­ri­ty con­sul­ting also includes the imple­men­ta­ti­on of secu­ri­ty awa­re­ness pro­grams and the trai­ning of employees.

SEC4YOU offers infor­ma­ti­on secu­ri­ty con­sul­ting in the fol­lo­wing are­as, among others:

  • IT-Secu­ri­ty Consulting
  • ISO/IEC 27001 and ISMS implementation
  • Crea­ti­on of guidelines
  • Secu­ri­ty awareness
  • Secu­ri­ty & data pro­tec­tion concepts

YOUR ADVANTAGES

  • Inde­pen­dent effort assess­ment of infor­ma­ti­on secu­ri­ty projects.

 

  • Pre­pa­ra­ti­on of a risk inven­to­ry as well as its assessment

 

  • Veri­fia­ble IT secu­ri­ty tar­get defi­ni­ti­on through the use of stan­dards such as ISO/IEC 27001, COBIT, BSI-Grund­schutz

 

  • Saving money through stra­te­gic eva­lua­ti­on of IT secu­ri­ty acquisitions

IT Secu­ri­ty Ques­ti­ons? You want to talk to an expert?