– SSAE16 ISMS –

SSAE16 ISMS

We invite our clients to let us help them develop all documentation, and implement SSAE16 Information Security Management System (ISMS) into their organization. If your company already has an SSAE16 certification and declaration, this needs to be updated each year according to the ISMS standard.
 
As certified ISO/IEC 27001 ISMS Lead Implementers, our consultants can guide your organization through the process of SSAE16 implementation and certification, and ensure you will be successful and achieve your goal each year ahead.

Click here to contact us for an informal meeting.

 

SSAE16 Information Security Management System (ISMS)

Most people are familiar with one or another type of ISO standard from their everyday life, where ISO 9000 and 9001 quality management certifications most likely are the standards, that most people are somewhat familiar with today.

Within information security the ISO/IEC 27001 ISMS is the defacto standard, whereto SSAE16 is a great step in the right direction of building an ISMS.

As most other ISMS standards it reaches widely into business of any company implementing the standard, since information security of today embraces most departments and functions in our everyday life.

 

Thoughts about preparing SSAE16 ISMS

Here are a few thoughts for you who either considering, or already has an older certification under the ISO/IEC 27001:2005 ISMS standard requirements, and instead wish to implement the SSAE16 ISMS standard.

  • Who are the stakeholders in our organization we need to engage, and what does it really mean to them that we have the declaration in place every year?
  • Is it a requirement from our customers or other stakeholders, that we each year conduct a review of our operating conditions?
  • Have we describe our various resources, including methodology within the same?
  • Are there already descriptions and procedures of our IT infrastructure, software, method of installation and operation, etc.?
  • Who is responsible for summarizing the material and is it a task that should be shared out among the persons involved in each resource and / or department within the company?

There are a myriad of other issues that needs to be adressed in preparation of an ISMS.

However, the above thoughts of consideration hopefully gives you a little insight into the many aspects, that a company should either consider before initiating a renewal of an existing ISO/IEC 27001 ISMS or SSAE16 standard statement, to obtain certification based on the new regulations, or start building a brand new Information Security Management System.

 

We can get you started

We can help your company get started, and either prepare the entire set of documentation for you, based on interviews, analysis and data collection, or perform the same task in cooperation with those of your departments, who are involved in the project.

Most of our clients also ask us to help them with assisting in implementing the standard, after rewriting all of the existing data. In such cases our clients execute the role of reviewers, thereby testing that what we have written actually works and thus will be approved during an IT audit.

 

Contact us

Please do not hesitate to contact us for further information about preparing your organization for SSAE16 ISMS.

Click here to get in touch with and send us a message.

Læs mere

Consulting
Få et overblik over de forskellige serviceydelser vi tilbyder vores klienter

Rådgivning
Læs om hvorledes vores konsulenter rådgiver vores klienter indenfor ISO/IEC 27001 ISMS implementering og it-sikkerhed

Projektledelse
Vores konsulenter er certificerede projektledere indenfor Six Sigma, PRINCE2 og Lean med fokus på forberedelse af dokumentation mod en ISO/IEC 27001 ISMS it-sikkerheds revision

ITSM services
Ved brug af vores IT Service Management (ITSM) services kan Jeres virksomhed leje en professionel IT chef uden social omkostninger

Service Delivery Management
Enterprise Hosting kunder fortjener en Service Manager, der fortæller dem alt om deres driftsforhold

Kontakt NetQuest ®

Telefon: +45 - 70 22 00 25
E-mail: info@netquest.pro

NetQuest ApS
Herstedvang 8
DK-2600 Albertslund
Denmark