Information Age help organisations achieve good practice in the EPIC quartet of essential ICT controls. (“EPIC” is Effective, Protected, Interactive and Correct)
EFFECTIVE = Supporting information strategy, technical architectures and operations to ITIL / ISO 20000 compliance.
PROTECTED = A range of Cyber Security Control sets IT Security is an area of concern for many businesses who need to ensure that their organisation is safe from cyber threats. In response to the growth of these threats, we have developed a series of pathways to help your organisation achieve a proportionate response to these threats which is affordable and sufficient, protecting your intellectual property and your corporate, personal and customers information.
Cyber Essentials This is the basic level of security certification. It provides assurance that the basic security controls are in place. The UK government has mandated it as the minimum requirement their suppliers.
IASME Going on from Cyber Essentials, this standard provides incremental steps to improved security. Move to the Bronze, then Silver and then Gold Standard
ISO 27001:2013 Not suitable for all organisations, but marks the achievement of best practice, providing assurance to management, shareholders and customers. We have considerable experience of bringing your Information Security Management System (ISMS) to the standard required for certification.
ISAE 3402 – for service companies, mostly within the financial services sector this audited standard provides assurance that the required controls are in place – meeting the “EPIC” controls quartet.
PCI Self Assessment Compliance with one of the above security standards will ensure you meet the requirements required by the Payment Card Industry. For small and medium organisations using payment cards Self Assessment is required. As part of the development of your standards we can ensure compliance with PCI DSS (Data Security Standard) and ensure your documents and records meet requirements
ITERATIVE = by use of agile approaches using sound systems engineering techniques ensuring you take full advantage of information age technologies. (This service is delivered by Information Age partners)
CORRECT – ISO 25012 data quality control Going on from data integrity, we also support the controls required to ensure your data is correct in the first place, or dealing with situations where the data source is not 100% reliable. This takes integrity to a new level – ensuring the data you have is fit for purpose.