Affordable | Achievable | Relevant
INFORMATION SECURITY BEST PRACTICE AND CERTIFICATION
Information, particularly personal client information, is increasingly becoming recognised as a business critical asset, forming the backbone of your organisation, and driving growth.
Despite the importance of this information, the applied security is often overlooked, resulting in the vast majority of security breaches actually coming from within the organisation - a result of poor policy, procedures, staff training and their awareness of security risks.
Many organisations are exploring the benefits of certifying to ISO 27001
as a means of letting your clients and business partners know that you
take their information security seriously.
Contact us to order your ProSec2 package.
We will arrange a date for your initial preparation meeting with a ProSec2 security consultant.
If you have any queries about the ProSec2 service please use the form to the right.
However, following considerable research it has been found that whilst ISO 27001 is an excellent standard it is expensive, time consuming and fairly complex to implement, particularly for small and medium sized businesses. Comments on the rising cost of ISO 27001 certification can be found in this excellent article by PivotPoint security.
The ProSec2 framework was put together by a number of Senior law firm IT Directors following increasing demand from clients for best practice assurances. The new IS accreditation, ProSec2 is designed to be a 'lite' alternative to ISO 27001.
Where ISO 27001 focuses on having a management system and controls in place, the ethos behind ProSec2 is education. We believe that a well informed business who understand, operate and communicate IS best practices internally will benefit from improved processes, enhanced customer relations and ultimately an increase in business.
The UK goverment are now offering Security Consultancy grants of up to £5000 for small businesses click here for details
THE ProSec2 FRAMEWORK
The ProSec2 framework is built on 5 best practice principles. Each principle has an associated objective and requirement. As part of the package we provide 10 fully editable IS Policy Templates for your use should you need them.
By completing the assessment and achieving accreditation you will be informing your clients that your business is following best practice in these key areas.
ProSec2 is a straightforward and affordable 4 stage process to accreditation and the ProSec2 standard will give your clients the comfort that a best practice framework is in place. In addition once accredited, your business is more than half way to ISO if you wish to carry on.
As ProSec2 has a strong emphasis on education, we also believe that self policing is an important part of the accreditation and therefore our auditors only want to know that the best practices are understood and policies are active.
The straightforward and transparent audit process is carried out by a licenced, independent auditor who can award accreditation on the spot.
All ProSec2 accredited businesses may use the accreditation logo freely to promote the fact they have information security best practices in place.
easy to understand
10 best practice IS Policy templates included
Enhances client confidence & perception
Can offer a competitive advantage and differentiator in contract tenders
Enhances security awareness within your organisation
THE ProSec2 PACKAGE
STAGE 1 - PREPARATION
On site preparation briefing by ProSec2 consultant
Self assessment questionnaire to assess risk and gaps in policy
STAGE 2 - IMPLEMENTATION
Following completion of questionnaire - on site gap analysis by ProSec2 consultant of all documentation and processes.
Provison of free Policy Pack (10 best practice IS policy templates)
STAGE 3 - REVIEW
On site review by ProSec2 consultant of all completed documentation and active policies
Certification checklist provided
STAGE 4 - AUDIT & CERTIFY
Onsite audit by independent auditor
Under 100 employees = £3000
101- 250 employees = £5000
Over 250 employees = £7500
The UK goverment are now offering Security Consultancy grants of up to £5000 for
small businesses click here for details
Includes User Awareness PPT Template
WHITE LABEL SERVICE
Become an APA (Accrediated ProSec2 Advisor) and offer the ProSec2 service to your own clients