The Information Security Module
It delivers an affordable, pre-packaged risk management solution offering the highest standard of protection under ISO/IEC 27001:2005, right out of the box!
Information Security issues are growing. Are you in control?
Your organisation’s information security can be at stake, in addition to the reputation.
At Oxial, we understand the challenges facing IT and Business managers to improve the security of information and information systems. We also recognise the sometimes prohibitive cost of obtaining specialist advice and/or the acquisition and implementation of overly sophisticated software. So, we created an industry-wide, best practice Information Security version of our widely acclaimed solution, to deliver immediate benefits and the highest standard of protection under the globally recognised ISO/IEC 27001:2005 standard, and which can be deployed across the organisation.
The Information Security GRC Standard
It incorporates a fully pre-populated risk register with associated controls and implementation guidance, a controls assignment and execution monitoring system, early warning and incident management system.
Additionally, a rich reporting and real-time management dashboards with alerts and Key Risk Indicators is available, plus an integrated methodology for monitoring, measuring and reporting the ongoing effectiveness of key controls, this solution can be rapidly implemented to deliver immediate protection and compliance with legislation.
Benefits and key features
Get live in a few weeks with our out of the box, regulator compliant solution.
Based on our experience and expertise, we’ve been able to implement GRC solutions across different types of organisations,
- Competitive Edge – meet contractual requirements / show that security of confidential information is paramount
- Immediate protection and compliance with legislation
- Robust security – reduces risk of fraud, cyber crime, loss of confidential information etc.
- Achieve savings through better discipline / better controls
- No consultancy or software implementation fees
- Out of the box solution for rapid deployment and integration
- Pre-populated risk register – including definitions of the 39 main security categories
- Controls defined – including implementation guidance for the 133 controls within the code of practice
- Automated scheduling calendar for controls execution
- Pre-packaged capability to develop sophisticated Risk Treatment Plans
- Rich reporting and intuitive management dashboards
- Overarching visibility of information security risks and controls across the organisation
- Fully inclusive Incident Management System
- Can be integrated with existing risk management systems
