ISMS Policy

             
             
  Home About Gamma Tour our Web Site Events White Papers Services Visitors' Book How to contact us
        IMS Internal Control ISMS Smart Cards Common Criteria
                 

The ISMS policy is probably the most important security document you will ever need to write.  This is because it forms your definition of security and as such it should govern everything that you do to maintain security, how you react if things go wrong and what to do when things change.  If you are not sure what to do...

Your response - ask Gamma to help you write your ISMS Policy

We will assist you to define the scope of your ISMS and to write your ISMS policy. Our policies are concise: 2 to 3 pages long, and should be signed by the person in overall charge of the entire business within scope of the ISMS - just as expected by the Certification Auditors.

In general our policies cover the following topics:

  • Risk management
  • Assets
  • Business context
  • Risk evaluation criteria
  • Management of the ISMS
  • Use of ISO/IEC 17799, ISO/IEC27001 and certification
  • IT policies (management and technical)
  • Forensics
  • Other applicable policies (e.g. those of your ISO 9000 QMS)

Careful construction of the ISMS policy simplifies the risk assessment and the construction of the SOA.

Your next move

... simply contact David Brewer. Why not do it now!
             
             
             
 
Gamma is an ISO/IEC 27001:2005 and BS EN ISO 9001: 2000 registered company, certified for the provision of information security consultancy.  BSI certificate numbers IS 85916 and FS  30710.  Please send comments to webmaster@gammassl.co.uk or complete our Visitors'Book. Gamma Secure Systems, Diamond House, Frimley Road, Camberley, Surrey, GU15 2PS, UK Tel: +44 1276 702500 - Fax: +44 1276 692903Copyright © Gamma Secure Systems Limited 1998-2006
 
 
Page last updated: 10 March, 2006