Information Security Management System (ISMS) is a framework of policies that allows a company to remain its information assets secure. ISO 27001 is globally recognized standard that provides a set of standardized requirements for an ISMS to prove its credibility.
Dynamic Domain group implemented ISMS and certified it in accordance with ISO 27001. Now Dynamic Domain offers a full-scale services to help organizations of all sizes to get successful compliance/certification.
Information Security Framework
- Processes, policies and procedures – creating all necessary documents for ISMS implementation: Security Policy, Incident management policy, risk management procedure etc.
- Security Governance – organization of Information Security, defining roles and responsibilities.
ISO 27001 Certification
- Preparation for certification audit in accordance with ISO 27001 requirements – assistance in certification body selection, completing applications, full-scale support during the audit, assistance in fixing non-conformities.
Information Security Controls
Implementation of security controls at all levels:
- Organizational
- Operational
- Technical
Audits
Conducting comprehensive audits to improve organization Information Security.
- Process and organizational audits
- Technical audits (penetration test/vulnerability assessment)
- Compliance audits (ISO 27001, PCI DSS)
Trainings
- Trainings and security awareness – providing general or specific Information Security trainings.
INFORMATION SECURITY AUDITS
Security auditing is one of the most powerful tools to help your Company identify potentials threats and vulnerabilities.
Dynamic Domain offers professional ISMS audit as well as development and implementation of the efficient measures to reduce the discovered risks.
Audit types
- Compliance audits for correspondence to the requirements of ISO 27001, PCI DSS and other standards
- Process and organizational audits
- Technical audits (penetration test\vulnerability assessment)
COMPLIANCE WITH LEGAL SECURITY REQUIREMENTS
Dynamic Domain offers consulting services on preparation for ISO 27001, PCI DSS and other standards’ certification.
As the most of information security standards are similar in structure, Dynamic Domain is ready to help in preparation for any standard that contains security requirements.
Consulting services
- Initial assessment audits
- Gap analysis and implementation plan development
- Guidance during certification audit
OUR TEAM
Information Security experts with wide experience in:
- ISMS implementation in accordance with ISO 27001 and PCI DSS requirements
- SIEM implementation including QRadar SIEM, TSIEM/TCIM/TSOM
- Penetration testing e.g. MS, J2EE and OS platforms (*nix)
Our specialists are certified:
- Lead Auditor for ISO 27001 and ISO 9001
- CISM
- SIEM experts certified by IBM