INFORMATION TECHNOLOGY SOLUTIONS
Home   Contact   Events   Partners   Sitemap  
   
   
   
   
   
   
   
IT Solutions | Education | Leadership Expertise | Radian Story  

IT Compliance Management
Business Continuity Management
Information Security Management
On-Demand Professional Resources
IT Internal Audit
Everything i
 News and Events

NEW Radian Offering

The Radian Group, LLC announces its newest Service Offering for 2008;

On-Demand

Information Security and

Risk Management Resources

 

Can you afford to hire a dedicated full time resource to manage the many compliance requirements facing your organization? 

 

Newest WHITEPAPER

Raising the Bar with

BS 25999: Persistent resilience and cohesive continuity for organizations and their vendors


This white paper was first released at the BSI Communication Days in Chicago, held on March 11, where Lisa DuBrock, Managing Partner of The Radian Group was the guest speaker.

 

The Radian Group and MK Business Solutions chose to focus on vendor compliancy for their first white paper to bring awareness to both the organization faced with managing a complex array of vendors and suppliers to the actual vendor themselves, concerned with excessive costs and resource drain managing the compliant requirements being sent down from their customers.

 

 DOWNLOAD!

 

SPRING-SUMMER 2008

Compliance Readiness Assessment
Now Scheduling for Spring 2008

 


Let us work onsite with your ISMS or BCMS teams to determine how close you already are to becoming certified to either ISO 27001 or BS 25999.

 

Our one day on site workshop will lead your team through:

* Required elements of the standard
* Required documentation
* Gaps you may have in your

   processes
* The certification process
 

You may be surprised by the results. Get the necessary data to take back to your executive team to introduce the prospect of Certification. Become one of the many organizations around the world using BS 25999 as a competitive advantage.

Sign up before May 31st and receive 30% off published price!

 

REGISTER Now!!

 

 

Thursday, June 5, 2008

Compliance Roundtable
Sponsored by ITA Chicago


Hot Compliance Topics

Mid-Year Review - recent events and IT Compliance concerns

 

ITA Conference Centre

Time: 12:00 - 1:30 PM CDT

Location: Chicago, Illinois 

 


Our IT Compliance Management Blog
 

Our IT Compliance Blog is designed to facilitate the exchange of information between those seeking to comply with the requirements of various Regulations involved in IT Compliance, and those looking to provide answers and support to the greater Information Technology Management base.

 

RadianCompliance.org is also intended to act as a guide, offering useful Compliance News Updates, Resources, Opinions and Industry Standards Information.

 

Visit our Blog, and search through our articles - comments and links to learn more about this complex and beneficial IT Compliance Management revolution!
 
  Send Page To a Friend
Email Newsletter icon, E-mail Newsletter icon, Email List icon, E-mail List icon Sign up for our Email Newsletter

   

The Radian Group utilizes a subset of international standards, industry frameworks and extensive Information Security knowledge to assist clients with ISM requirements.  We provide value to our clients through the strategic use of incorporating education into our  meeting facilitations, process recommendations and deliverables.  We link core competencies to a number of ISO Management System standards to assist the client in development of repeatable and sustainable processes in all areas of their IT business.  We maintain expertise in the following International Security and IT Standards and Codes of Practice along with industry recognized models.

¨ ISO/IEC:27001 Information Security Management Systems

¨ ISO/IEC:20000 IT Service Management System

¨ BS 25999-2 Business Continuity Management

¨ CobiT & COSO Frameworks

Whether you are seeking ISO /IEC 27001:2005 certification or just need to put a set of policies in place, the Radian Team will provide a solution that meets your needs.

Project Team Expertise

 

Our  ISM  team is led by professionals who hold numerous industry specific certifications. Our Radian Compliance Team includes:

 

¨ CBCP:  Certified Business Continuity Planners

¨ CISSP:  Certified Information Systems Security Professionals

¨ CSOX:  Certified in Sarbanes-Oxley for Finance and IT

¨ CPA & CISA:  Certified Public Auditor & Certified Information Systems Auditors

 

Solution Components

Information Security Management Systems

¨ Define ISMS Scope and Policy, Prepare a Statement of Applicability

¨ Identify Assets and Risks Treatment Plans

¨ Implementation of Policy & Operational Changes

¨ ISMS Education

¨ ISO/IEC 27001:2005 Certification Readiness

¨ Custom Training Solutions

 

IT Security Assessment

¨ Review of existing Security Standards & Policies

¨ Gap Assessments to Best Practices

¨ IT Risk Assessment

 

Business Continuity / Disaster Recovery

¨ Business Impact Analysis

¨ Strategy Design & Implementation

¨ Testing / Rehearsal Design & Execution

¨ BS 25999-2 Certification Readiness

 

What is an Information Security Management System?
An Information Security Management System (ISMS) is a systematic approach to managing sensitive company information so that it remains secure. It encompasses people, processes and IT systems. ISO/IEC 27001:2005 is the latest International Standard an organization must be measured against to implement a successful ISMS. BSI has also published a code of practice for these systems, ISO/IEC 27002:2005, which is now adopted internationally. This document will help guide an organization looking to register to ISO/IEC 27001:2005.

Information security does not end at implementing the latest firewall, or hiring a 24 hour sub contracted security firm. The overall approach to Information Security, and integration of different security initiatives need to be managed in order for each element to be most effective. That's where an Information Security Management System comes in - it allows you to coordinate your security efforts effectively.

 What is ISO/IEC 27001:2005?

ISO/IEC 27001:2005 is a standard setting out the requirements for an Information Security Management System. It helps identify, manage and minimize the range of threats to which information is regularly subjected.

ISO/IEC 27001:2005 covers the following topics:

Security policy - This provides management direction and support for information security

Organization of assets and resources - To help you manage information security within the organization

Asset classification and control - To help you identify your assets and appropriately protect them

Personnel security - To reduce the risks of human error, theft, fraud or misuse of facilities

Physical and environmental security - To prevent unauthorized access, damage and interference to business premises and information

Communications and operations management - To ensure the correct and secure operation of information processing facilities

Access control - To control access to information

Systems development and maintenance - To ensure that security is built into information systems

Business continuity management - To counteract interruptions to business activities and to protect critical business processes from the effects of major failures or disasters

Compliance - To avoid breaches of any criminal and civil law, statutory, regulatory or contractual obligations, and any security requirement

The Eleven Control Clauses

 


[IT Solutions] [Education] [Leadership Expertise] [Radian Story]


  
info@theradiangroup.com - Copyright 2007 The Radian Group, LLC. All rights reserved - View our Privacy Policy