ISM4SOHO SERVICES
Corporations and larger Enterprise have a vast wealth of tools, resources and expertise to apply to Information Security. Here at ism4soho, we recognize that you may not. However, whether your large Corporation or a small business owner, the need is the
same. What risk are not addressed in my current Security posture?
​
To answer this question you need to know what you have. This is where ism4soho can help.
Our customized methodology tailored specifically for Small Office/Home offices, enables us to identify the known and unknown and assess what impact it has on your work environment. We utilize a standardized approach throughout the entire engagement, so that you understand what is being done, how and why. It is a three (3) step process: Assessment, Reporting and Solution Implementation Planning. The end result is a snap-shot of your current security posture, actionable information that enables you to make decisions, an action plan to guide you through the implementation of solutions and identification of 3rd party resources to help in special solution requirements.
ASSESSMENT
The first step in the processes is an exchange of information. It's success is based upon mutual collaboration and partnership.  We start with questionnaires and surveys to help us understand your work environment and the scope of work. Once the Scope of Work has been formalized and agreed upon, we broaden our understanding of your business by performing a walk-through of critical services your organization performs/offers. During this time, we build an understanding of the technology that supports these critical processes. On site, we will utilization a variety of tools and industry assessment best practices to identify equipment, inspect configurations and observe your technology infrastructure.  We bring it all together to identify and evaluate risk scenarios. Finally, we document the results and conclusions.
REPORTING AND STRATEGIC PLANNING
Strategic Planning starts with communicating the risk assessment findings to you. Your personalized Current Security Posture report will help you understand what the severity and potential impact of the risks are to your organization.  We provide recommendations on what remediation solutions can be applied to best manage the realization of risk while remaining sensitive to the cost/benefits of possible solutions. The end result is a Future State Security Action Plan.
MOVING FORWARD -IMPLEMENTING YOUR SECURITY POSTURE ACTION PLAN
Here you will make decisions on how to implement your action plan. As a business owner, you know how much risk you are willing to take. Your also are in the best position to know what resources (financial and people) you are willing to commit to improving your security posture. Certainly some solutions, will be simple, low cost and capable of being resolved in-house (by you). However others may require special skills. While ism4soho does not perform remediation implementation, we can
provide consultative advise on solution providers based upon our insights and knowledge of 3rd party vendors. You then can choose the best
vendor to implement your solutions.
