ISO Compliance

The ISO 27000 series of standards are a catalogue of international standards focused on information security and published by the International Standard for Organization. The most prominent from the series are ISO 27001, a management standard that can be audited, and ISO 27002, which prescribes best practices and controls – but is not a certification standard.

ISO 27001 was recently updated after being first released in 2005, is a specification for an information security management system (ISMS). The standard lays out mandatory requirements that are able to be audited and certified. It contains a cycle of four phases that must continually be implemented.

NetSentries services and security solutions to help organizations of any size respond to the ISO 27000 series of standards, including 27001 and 27002.

ISO 27002 is not a formal specification and is not certifiable. Instead, it supports ISO 27001 by recommending detailed guidance for addressing information security objectives related to data confidentiality, integrity and availability, and deploying an ISMS. ISO 27002 also recently was updated and contains 114 controls listed under the following main sections:

Structure
Security Policy
Organization of Information Security
Human Resources Security
Asset Management
Cryptography
Physical and Environmental Security
Operations security
Communications Security
Information Systems Acquisition, Development, Maintenance
Supplier Relationships
Information Security Incident management
Information Security Aspects of Business Continuity
Compliance
Access Control

NetSentries provides a comprehensive portfolio that can help organizations of any size respond to the ISO 27000 series of standards.

Plan and Prepare

Conducting Risk Assessment is the first step to identifying and implementing safeguards necessary to meet compliance. NetSentries helps you identify gaps that may exist between your current security posture and ISO guidelines. The customizable assessments, scaled individually for your organization, include identification of key assets and IT systems, assessment of controls and frameworks and a review of third-party providers and incident response programs.

Address Gaps and Vulnerabilities

NetSentries products and services help organizations respond to the controls listed in the ISO standards and implement best practice suggestions Here’s how we can help:

SIEM

Helps you gain broad visibility of threats to your network and improve your compliance process through logging, monitoring, and analysis of events..

Managed Detection & Response

Our state of the art ElastikTA Managed Detection & Response platform provide real time detection of all suspicious activity correlated with other contextual data, providing actionable responses.

From monitoring access to sensitive data to enforcing your acceptable usage policy, MDR helps you comply with stringent regulatory requirements, no matter your industry.

Our 24×7 Security Operations Centre is filled with the top-notch security analysts who are equipped with advanced forensic tools and tradecraft to combat today’s sophisticated attacks, which means you get enterprise-grade security, no matter the size of your business.

Security Awareness Education

Instructs your employees and contractors to understand the threat of social engineering and follow best practices for security, including password management and the safe use of web and social media tools.

Security Awareness Education

Instructs your employees and contractors to understand the threat of social engineering and follow best practices for security, including password management and the safe use of web and social media tools.

Incident Readiness and Response

Prepares your staff to proactively identify the indications of a breach and contain it quickly and efficiently.

Data Loss Prevention

Allows you to discover and classify sensitive data and prevent it from leaving the network.

Compliance

Identifies areas of risk and establishes the business and technical requirements needed for an effective information security program. NetSentries helps you to automate and manage controls, policies and procedures across multiple compliance frameworks.