|
|
|
Home || Fraud Detection | Analytics | Data Management | Information Security || Scillani |
||
| IT-Leadership Services provided in cooporation with Gassås Syd | ||
| Strategy | Goveranance | Security | Service Management | Project | Development | Quality | Audit || Gassås | ||
 |
||
Some adviceWorking with security is about understanding risks and then to describe how to protect you. The first step to enhance security is risk analysis. When you have done that, then you should define a security policy that is supported and sponsored by management and that is communicated to the organization. It is common that you are not defining a strategy that describes how you shall reach the desired level of security. IT-security is very much about technology but it is important to take care of people. Often it is the individual person that is the weakest link in the chain of safeguards. Focus onWe know ISO 27000 and are working with organizations that will achieve certification and with organizations that only wants to use some parts to manage specific risks.
|
IT & Information security[Preservation of confidentiality, integrity and availability] Taking risks is a natural part in running a business, that also have an impact on security. Therefore we approach information security from business driven values where costs must be aligned with operational or strategic objectives. With this approach we are able to assist you to develop a secure business.
Do you reflect upon what security weaknesses would mean to your business, but you don’t know where to turn or how to handle it. We can give you the guidance that is needed and we follow trends in the security profession to be able to assist you in your development.
Management systems: A component to work proactive with security is to establish a management system. We assist you in the development process where the different components of the system is developed and implemented. Risk analysis: Investments to increase the security level need to be based on risk analysis. We work with different models where we both perform risk analysis and develop models for you to use on your own. Security analysis: Assessment of how well security requirements are achieved needs specific analysis. We handle this with gap reporting against both implement requirements as well as best practice. Awareness: A key issue to establish a culture of security is to work with awareness on a continuous basis. Our approach when we talk about awareness is based on terms and techniques use in marketing and sales. Security is about changing people and it is our key concern. Incidents: Capturing and reconciling incidents is necessary input to your business development process to be able to use your resources efficient. We assist you in establishing processes and systems for reporting and follow-up. Continuity: Business continuity planning and disaster recovery planning have a direct impact on the ability to make business. With this starting point we develop plans and assist you to test them. Security audit: Performing individual security audits is necessary to verify that basic security measures have been implemented. We do these kinds of audits, based on a foundation of independence and professional performance of work.
|
Scillani Information is a company working with research and development with its focus on innovative use of Information and Information Technology (IT) to enable sustainable growth for organizations. We are working in the field of using data and information to enable knowledge, where some of our focus topics are Fraud & Corruption, Data analysis & Data mining, Data management and Information Security. |
|
|
