|
|
|
|
ISO 17799 Product Description
Information security is one of the major concerns of the new information age.
Organizations are dependent on the reliability of their systems, the confidentiality, and integrity of the data therein.
easy2complyis an easy to use, web-based enterprise class application, that enables organizations to quantify and automate risk management process. easy2comply enables the continuous management and control of information security status in accordance with the ISO 17799 standard.
easy2complyprovides a comprehensive work cycle that is composed of 4 stages:
1. Definition Stage
• Organizational Structure
• Risk Tier Structure
• Define user rights
• Alert configuration
• Configure data import
|
2. Documentation Stage
• Define policies and procedures
• Identify Processes & sub processes
• Define Risks & Controls
• Define prototypes and weight of importance
• Define Testing Procedures
|
4. Reporting Stage
• View Dashboard and Reports
• Perform Simulations
• Define Remediation plan
• Distribute and follow-up Tasks
• Export Information & Print Reports
|
3. Testing Stage
• Perform Testing
• Describe Findings
• Provide Recommendations
• Attach Evidence
• Provide remarks
|
|
|
