• Introduction
• Strategic IT Consulting
• Identity & Access Management
• Security Assessment
• Security Auditing
• Introduction
• Security Training & Awareness
• Payment Data Security Standards
• Sarbanes-Oxley
• Legal & Regulatory Compliance
• BS7799/ISO 27001
• Ethical Hacking
• Secure Wireless
• Secure Infrastructure
• Application Development
• Managed Services

ISO 27001 or formerly BS-7799:Part 2 (or Irish Equivalent IS-17799), defines a code of practice for design, implementation and continuous improvement of an organization Information Security Management System (ISMS).

The ISMS is designed to protect information assets and give confidence to external organizations and customers that proportionate security controls are deployed to protect the information assets.

The standard consists of a list of ISMS operational requirements followed by twelve specific clauses:

• A.5 - Security Policy
• A.6 - Organization of information security
• A.7 - Asset management
• A.8 - Human resource security
• A.9 - Physical and environmental security
• A.10 - Communications and operations management
• A.11 - Access control
• A.12 - Information systems acquisition, development and maintenance
• A.13 - Information security incident management
• A.14 - Business continuity management
• A.15 - Compliance

The ISO 27001 standard is designed to align or integrate into an existing information security management system. It is possible for your organization to adapt its existing information security management systems and policies in order to comply with the requirements of ISO 27001.

Whether your organization is starting out on the road to starting towards ISO 27001 or you have an existing Information Security Management System you wish to verify against ISO 27001, Ward solutions certified BS-7799/ISO 27001 security industry professionals with many years of implementation and assessment experience in this area can help.