maturity level analysis of information security
The secure operation of information technologies in companies is complex. Numerous technical, organisational and personnel aspects are to be taken into account. In addition, there are also legal regulations to enforce the implementation of certain security concepts.
We can provide the respective maturity level analysis to assess the actual state of all concepts and their interaction within your IT environment. This analysis is based on comprehensive interviews with the IT and system managers, using detailed questionaires, documentation reviews and site inspections. The applied assessment materials are proven in practice and comply with ISO/IEC 27001.
- management & organisation
- technology & operation
- BCM & emergency plan
- physical security
- contractual relationships
In more complex IT environments the assessment is generally performed by two auditors with shared responsibilities for audit management / interviewing and response documentation.