ISF IMPLEMENTATION SERVICES

The implementation support provided by Jerakano to members of the Information Security Forum (ISF) is carefully tailored to meet the needs of your organisation, but typical services include:

  • Undertaking a high-level security review, using Jerakano's Business-focused Information Security Management Assessment BISMA - often supplemented by the ISF Security Healthcheck - giving you an independent opinion about the maturity of your information security arrangements, identifying both where and how you can use ISF tools and services to improve your rating
  • Enabling you to better understand the key concepts behind the ISF's flagship Standard of Good Practice (SOGP) and implement it in an efficient, sustainable manner
  • Helping your organisation to take part in the unique ISF Benchmarking service, comparing your security arrangements in SOGP, ISO 27001 or NIST Cyber Security format against those of other similar members, with results being shown in real time
  • Building an information risk analysis capability for your organisation, based on the ISF IRAM2 (Information Risk Analysis Methodology) tool; 'GRC' tools; or specially tailored desktop solutions (eg spreadsheets or Microsoft Sharepoint)
  • Designing tailored information risk management methodologies – supported by seasoned, independent advice on the most suitable tools to help you assess information risks; determine your level of compliance with international security-related standards (such as ISO 27001 or PCI DSS); and monitor the effectiveness of your information security arrangements
  • Providing you with implementation support for ISF research projects - such as those relating to security governance, risk convergence, information classification, and protection (including labelling and DLP solutions); IT or security governance, strategy, standards and awareness; supplier relationship management; cyber security incident response; or security monitoring, audit and review (including KPIs and dashboards) - enabling you to implement the project recommendations pragmatically within your organisation
  • Implementing an approach that enables your organisation to improve the way in which you manage the security of supplier relationships, using the ISF 'Securing The Supply Chain' suite of tools
  • Training members of your organisation in how to use ISF tools effectively - and make the most of ISF membership.

Note: Jerakano also runs research, implementation or development projects for members and non-members alike.
ISF STANDARD OF GOOD PRACTICEJERAKANO ISF SUPPORT