Our expertise for Information Security includes working with known control structures such as COBiT to achieve SAS 70 readiness along with auditable standards including the ISO 27000 Information Security family of standards. We focus our IT Service Management processes on ITIL best practices as well as the auditable standard of ISO 20000 IT Service Management.
Decades of consulting experience have helped us create a process that we know will result in your compliance results being achieved. Whether you are looking for compliance or testing existing processes, our direct and streamlined process will help you reach your goal quickly and efficiently.
1. Needs Analysis – Getting to the Core of the Issue
You may be able to describe the goal you have in terms of regulatory compliance or customer demands, but to ensure we are solving the right problem, we take the time to listen to more than just your most pressing issue. Our first step with you will be performing a comprehensive but expeditious interviewing and information-gathering process. Because we want to provide a compliance solution that effectively matches your particular situation, we take great care to ensure we have a thorough understanding of your organization and the issues you are facing. The deliverable from this process is a project charter and summary document describing the problem domain and specifics so you and your team can verify we are on track.
2. Specific Recommendations – Showing Our Value
Once we’ve determined that we have accurately identified your need and have a good understanding of the context, we leverage our knowledge of best practices as well as our own creative energy to come up with a set of recommendations that directly address the issue at hand. The recommendations encompass both high-level observations as well as specific tasks that should be completed to achieve the compliance you are looking for. The gap analyis from this process is our proposal for what should be done to achieve your compliance objectives and what costs and time frame are involved.
3. Implementation – Getting It Done
After we have a set of agreed upon next steps, we help you to actually organize the work, provide the resources and get it done. Using our extensive experience in IT implementations and compliance projects, we execute an actionable plan to achieve compliance. The deliverable from this step is the achievement of your compliance goals on an ongoing basis.
