IS Audit

Purpose

This service is designed to provide IT management with an independent assessment and recommendations to improve upon the organization’s secure information management system. The security review deals in both technical and management issues.

Description

NIMIS has a detailed and proven methodology for reviewing and analyzing the security of information systems that is based on international information security standards (ISO 27001).  NIMIS’ Consultants prepare a report with an executive summary covering the major issues and trends identified along with a detailed list of management and technical vulnerabilities complete with risks, implications and recommendations.

Service Features

• •  The review covers the policies and procedures used to manage information security, which ensures that the on-going management of the information is addressed and not just the immediate technical issues.
• • All vulnerabilities are quantified in terms of risk and implications, and detailed recommendations are provided in an easy to understand language, which means that IT management and staff do not need to be security experts to understand the findings and recommendations.
• • The review uses a standards-based approach which ensures that quality of service is maintained, and the resulting report can be used as evidence of due diligence.

ISO 27001 Consultancy

Implementing ISMS in organization requires sufficient ISO 27001 domain expertise. NIMIS’ ISO 27001 Certified Consultants are backed with strong Information Security domain expertise to help organizations achieve compliance in accordance to the ISO 27001 standard.

We offer:

•    ISMS Gap Analysis
•    ISMS Risk Assessment
•    ISMS Implementation Services
•    ISMS Awareness Training
•    ISMS Pre-Audit Services
•    ISMS Regular Review
•    ISO27001 Certification Trainings

Managed Security Services

Security is an ongoing process. Applications, Systems, and Networks are regularly changing with the passage of time. With the constant change in Information Systems, they require full time monitoring to ensure that a sound security position is maintained.

NIMIS offers its highly rated service that can monitor and manage your security infrastructure.

Service Features

• •  Scheduled Vulnerability Assessments and Security Audits
• •  Managing Intrusion Detection and Prevention
• •  Monitoring the health of overall security and network devices.
• •  Diagnosing hardware or software faults.
• •  Monitoring infrastructure for threats that might impact business.
• •  Analyzing, correlating, and classifying logs and alerts generated by security devices in real-time
• •  Updating the rule-set or policy of network devices.
• •  Reviewing every change request for its potential impact on organization’s overall security posture.

Policies and Process Development

Many companies have formulated security policies that cover all the bases and have acquired the latest security products that give them comprehensive protection, but they lack the right processes to support these resources. NIMIS’ Security Consultants build processes to bridge the gap between security policies and security technologies for its clients.

Service Features:

• •  We ensure smooth transitions during staff turnover and decrease the risk of disrupting established security processes.
• •  We help maintain appropriate security levels during network redesigns.
• •  We create the customized processes that our clients specify.
• •  We provide our clients with a gap analysis of their existing security policies.
• •  We help our clients implement the best practices based upon industry standards like ISO 27001.