A structured basis for information risk management
The MWR InfoSecurity implementation methodology is primarily workshop-based and MWR’s involvement can be scaled to suit your specific needs.
Typically, an MWR InfoSecurity Consultant will lead and guide the project, including scoping, assisting with project design and implementation, road-mapping, risk assessment, risk treatment and preparation of the Statement of Applicability (SoA).
MWR InfoSecurity consultants can also aid with the delivery of risk treatment options, for example, authoring of security policies, standards and procedures. The emphasis for all implementation consultancy is on ‘skills-transfer’, with as much involvement from the consultant as required during project progression. The aim is to impart the skills required to maintain ISMS functionality.
The benefits of the MWR InfoSecurity approach are:
- It provides you with a clear and structured approach to compliance and certification
- MWR consultancy can be tailored to your specific business requirements; we do not believe in a ‘templated’ approach
- Implementation is workshop-based, ensuring that all applicable business units are engaged
- The emphasis is on skills-transfer, ensuring suitable knowledge is imparted to the business for implementation and ongoing maintenance
- The consultancy can be tailored to your individual business needs, with as much involvement from MWR consultants as is required
Implementation documentation can be made available through MWR InfoSecurity’s Secure Delivery Management Solution, Fasthold. This enables you to disseminate collateral to all key stakeholders within the business, efficiently and securely.
