We support companies as well as organizations in designing, implementing, and certifying a robust and effective Information Security Management System (ISMS) along the ISO 27001 certification requirements. Our security experts will accompany your security staff throughout the entire design, implementation and certification process. Since ISO 27001 is a good basis but no guarantee for information security, Bosen AG also offers tools for creating an appropriate environment in order to reach the highest system effectiveness.
Design of ISMS Strategy
ISMS Scope Determination & Optimization
ISMS Gap Assessment
Security Controls Gap Assessment
Gap Remediation Facilitation / Support
ISO 27001 Concept
ISO 27001 Security Plus
The ISO 27001 compliance certificate gives assurance only that a management system for ISMS is in place. It does not provide a report on information security controls within the organization. Thus ISO 27001 is a good and necessary stating point. In order to take all potential threats and shortcomings into account our Security Plus approach pays particular attention to technical levels as well as social engineering attacks.
Analysis of technical set-up (Hardware & Software)
Technical Implementation of security measures
Effective deployment of technological instruments according to an individual threat scenario
Effective information security education and awareness