Upload
karlee-thore
View
216
Download
1
Embed Size (px)
Citation preview
Adaptive ISO 27001 Capabilities
www.AdaptiveProcesses.comBe with the Best!
About Adaptive Processes Mission: “To improve governance, risk and
compliance management practices in cost-effective and timely manner”
100+ person-years consulting experience in management systems (quality and information security) and process improvements
ISO 9001:2008 certified from DNV GRCPerfect – Enterprise Governance, Risk
and Compliance Management system for rapid and cost effective process implementation
25+ certifications in ISO 9001, 27001, 20000, CMMI, HIPAA, Six Sigma
100+ clients across the globe - US, Singapore, France, Thailand, Costarica, India
Member of NASSCOM Endorsed education provider for IIBA,
Canada 100% key client repeat rate
© Adaptive Processes
2Be with the Best.
Our Guiding Values• Commitment to Client
success• Spirit of Collaboration• Personalized Attention• Cost effective products
and services• Continual improvement
of Client and Adaptive capabilities
• Long term approach to relationships
© Adaptive Processes
3Be with the Best.
Few of the World’s Firsts• World’s first Data base
driven Quality
Management System
• World’s first Integrated
Data Management System
for Quality, Information
Security, Project
Governance, Risk and
Compliance for ISO 9001,
ISO 27001, CMMI, ISO
20000, BS 25999, HIPAA
• World’s first Video Based
Management System
• Multiple patents filed© Adaptive Processes
4Be with the Best.
Adaptive solutions catalogue
SW Standards - CMMI, AgileISO 9001, PMBoK
Business AnalysisConsulting and Training
Enterprise Risk and Continuity Management (ISO 27001, PCI-DSS, BS25999, SoX, HiPAA, COSO)
Performance Enhancement Consulting (BPR and Six Sigma)
Training, Auditing, eLearning
Metrics Based Improvement Remote Process Assurance
Program Management Office
Process Automation and Reengineering
Process Definition
ISO Certifications(ISO 9001, ISO 27001, ISO 20000)
SQA and Process Assurance Services
GRCPerfect10+ eLearnings
ISO 9001, 27001, Audit..
Adaptive Toolkits
QMS, ISMS, ITSM, BCMS
Supporting Infrastructure
© Adaptive Processes
5Be with the Best.
Successfully Completed ISO 27001
© Adaptive Processes Consulting Experience World Class Processes! 6
(In progress)
© Adaptive Processes Consulting
Experience World Class Processes!7
Clients for ISO 27K Definition, Audit and Training
© Adaptive Processes Consulting
Experience World Class Processes! 8
Managed ISMS services Complete ownership and accountability
of compliance activities for ISMS and BCMS
Multi-client experience to improve organization’s processes
Significantly reduced over all cost Comprehensive process and compliance
management system Zero recruitment or training cost Access to Adaptive repository, elearnings Clients who have benefited significantly
– Bharti-AXA– Ness technologies India– JuriMatrix Legal Services– MACH Teledata– Empower Research– V2Soft
© Adaptive Processes Consulting Experience World Class Processes! 9
Client testimonials• I find it very easy to do business with you. Thank you for
the contribution to our system. We have a great and open working relationship. We really respect your contributions in helping our organization.
– Puneet Chaddha (Head-Delivery, Ness Technologies)• Adaptive has been prompt and fast in responding to our
requirement. I am extremely happy with their people competence, and range of service provided. Adaptive would be my obvious choice for any of our process needs. I would recommend this team to my circle.– Santosh Kumar (Head-Quality, Infinite Computer Solutions)
• I have found Adaptive to be very professional and committed. Adaptive has a very good and sound grounding in terms of producing good software applications for Project Management and for QMS.
– Muktesh Murthy, Head IT Global Delivery at Sigma Aldrich
• Excellent workshop and a faculty with deep knowledge.– Manoj Nair, Process Manager - Ma Foi
© Adaptive Processes Consulting Experience World Class Processes! 10
GRCPerfect – Enterprise Governance, Risk and Compliance Solution• Governance, Risk and Management
System for ISO 27001• Complete data management for
– Asset management – Services, Movements
– Threats and Vulnerabilities– Business impact analysis– ISMS Management reviews– ISMS Audits– Incident tracking– Material movement tracking– Visitor tracking– Request management– Capacity management
• Complete ISMS processes, templates, guidelines and checklists
• Data control with complete role based permissions
© Adaptive Processes Consulting Experience World Class Processes! 11
Adaptive Management System• Complete repository for
ISO 27001• All processes in
professionally developed• 25+ Processes• 40 + Templates, • 20+ Guidelines• 20+ Checklists• Elearning for ISO 27001• All processes editable by
Client• Audited more than 10
times by various certification bodies and audit
© Adaptive Processes Consulting Be with the Best! 12
• Available to the Client as an Open-Code option which enables Client to obtain the source code of the product
• On-site support for customization• Best practices drawn from
internationally renowned organizations
• Configurable to company’s requirements – Supports multiple life cycles
• Built on industry standard .Net/SQL Server architecture
• Completely web-based with light-weight interface suitable to work on internet
GRCPerfect – Enterprise Governance, Risk and Compliance Solution
Adaptive eLearnings• eLearnings available for
– ISO 27001– Internal Audit– BS 25999
• Web-based eLearning• Has built in quizzes to test
understanding• Provided as complementary
product with GRCPerfect• Customized trainings can
be provided for organizational specific needs
© Adaptive Processes
13Be with the Best.
© Adaptive Processes Consulting Experience World Class Processes! 14
Benefits of GRCPerfect• Substantially reduced effort
in best practices adoption and implementation
• Complete automation of project management artifacts and reporting – significant savings on project management effort
• Significantly reduced project management effort in metrics data collection and reporting
• Senior Management and client visibility into Organizational, Account and Project level performance parameters
• Significant help in ongoing process sustenance beyond assessment
© Adaptive Processes Consulting Experience World Class Processes! 15
ISO 27001 Standard Compliance
© Adaptive Processes Consulting Experience World Class Processes! 16
ISO 27001 Compliance
Process Area GRCPerfect Module
Process Complian
ce
Data Complia
nce
4.2 Establishing and managing the ISMS
No data requirement
4.3 Documentation requirements
No data requirement
5.1 Management commitment
Skill gapTraining
Management
5.2 Resource management
Management Review
6 Internal ISMS audits Audit Management
7 Management review of the ISMS
Management Review
8 ISMS improvement Continual Improvement
© Adaptive Processes Consulting Experience World Class Processes! 17
ISO 27001 Compliance
Process Area GRCPerfect Module
Process Complian
ce
Data Complia
nce
Security Policy No data
Security Organizations No data
Asset Classification and Control
Asset Master
Personnel Security Training
Physical and Environmental Security
Visitor Manageme
nt
Communications and Operations Management
IT Checklists
Access Control Access Control Matrix
Systems Development and Maintenance
Review
© Adaptive Processes Consulting Experience World Class Processes! 18
ISO 27001 Compliance
Process Area GRCPerfect Module Process Complian
ce
Data Complia
nce
Security Incident Management
Incident Tracker
Business Continuity Management
Business Impact Analysis
Supplier ContactsEmployee Contacts
Compliance Audit Management
© Adaptive Processes Consulting Experience World Class Processes! 19
Module Demonstrations
© Adaptive Processes Consulting Experience World Class Processes! 20
© Adaptive Processes Consulting Experience World Class Processes! 21
© Adaptive Processes Consulting Experience World Class Processes! 22
© Adaptive Processes Consulting Experience World Class Processes! 23
Feedback from ParticipantsFeedback Analysis
Action Items for improvement
Create Action Items
Reporting
Meeting EffectivenessAction Items Closure
Prepare Notes and Discussion
Points
Select Agenda Checklist
Track and Verify Action Items to
Closure
Review Open Agenda Items from Previous
meetings
Plan meeting
Define Agenda
(ISO 9k/ 27K/ 20K / PMR
etc.)
Invite Attendees
Track Attendance
Plan AuditReport Audit Findings
against set criteria
Management Review
Reporting
Audit Findings Category Closure StatusAudit Findings Trend
Generate Audit Schedule
Tracking Action Items
Email Intimations to Auditors and Auditees
Email Reminders to Auditors and Auditees
Apply Audit Checklist
© Adaptive Processes Consulting Experience World Class Processes! 26
Adaptive advantages -End to end ISMS services Minimum 3 months of time and 50% of
cost savings over traditional methods of implementation
Comprehensive ISMS process definition and implementation system (GRCPerfect)
Consulting and training services multiple models - ISO 9001, ISO 27001, ISO 20000, CMMI, Agile, BS 25999
ISO 27001 eLearning for continuous learning
ISMS sustenance and assurance services
Process improvement using Six Sigma methodology
10+ projects - Matured implementation methodology
© Adaptive Processes Consulting Experience World Class Processes! 27
Adaptive advantages• Strong belief in client
satisfaction and mutually beneficial partnership
• Open code product• Emerging company • Flexible• Dedicated service• Proven competence• Cost effective
Thank you for providing us an opportunity to present ourselves to you and hoping for a long
mutually rewarding relationship.
Our contact detailsEmail: [email protected]
Cell: +91.9880.64.7936 / +91.9343.79.4800#51, 3rd Cross, Church Street
Koramangala 6th Block Annex, Bangalore – 560095www.AdaptiveProcesses.com
Blog: www.AdaptiveProcesses.BlogSpot.comLinkedIn : http://www.linkedin.com/company/adaptive-processes/