|
|
|
|
ISO 27001 Product Description
Information security is one of the major concerns of the new information age.
Organizations are dependent on the reliability of their systems, the confidentiality, and integrity of the data therein.
easy2comply is an easy to use, web-based enterprise class application, that enables organizations to quantify and automate risk management process. easy2comply enables the continuous management and control of information security status in accordance with the ISO 27001 standard.
easy2comply provides a framework for an ISMS, which is based on requirements, and serves as the means by which Senior Management monitors and controls their security, minimize risk and ensures compliance.
easy2comply provides a comprehensive work cycle that is composed of 4 stages:
1. Definition Stage
• Organizational Structure
• Risk Tier Structure
• Define user rights
• Alert configuration
• Configure data import
|
2. Documentation Stage
• Define policies and procedures
• Identify Processes & sub processes
• Define Risks & Controls
• Define prototypes and weight of importance
• Define Testing Procedures
|
4. Reporting Stage
• View Dashboards and Reports
• Perform Simulations
• Define Remediation plan
• Distribute and follow-up Tasks
• Export Information & Print Reports
|
3. Testing Stage
• Perform Testing
• Describe Findings
• Provide Recommendations
• Attach Evidence
• Provide remarks
|
|
|
