Transcript Document
Adaptive ISO 27001 Capabilities www.AdaptiveProcesses.com Be with the Best! About Adaptive Processes Mission: “To improve governance, risk and compliance management practices in cost-effective and timely manner” 100+ person-years consulting experience in management systems (quality and information security) and process improvements ISO 9001:2008 certified from DNV GRCPerfect – Enterprise Governance, Risk and Compliance Management system for rapid and cost effective process implementation 25+ certifications in ISO 9001, 27001, 20000, CMMI, HIPAA, Six Sigma 100+ clients across the globe - US, Singapore, France, Thailand, Costarica, India Member of NASSCOM Endorsed education provider for IIBA, Canada 100% key client repeat rate © Adaptive Processes Be with the Best. 2 Our Guiding Values • • • • Commitment to Client success Spirit of Collaboration Personalized Attention Cost effective products and services • Continual improvement of Client and Adaptive capabilities • Long term approach to relationships © Adaptive Processes Be with the Best. 3 Few of the World’s Firsts • World’s first Data base driven Quality Management System • World’s first Integrated Data Management System for Quality, Information Security, Project Governance, Risk and Compliance for ISO 9001, ISO 27001, CMMI, ISO 20000, BS 25999, HIPAA • World’s first Video Based Management System • Multiple patents filed © Adaptive Processes Be with the Best. 4 Adaptive solutions catalogue Process Definition ISO Certifications (ISO 9001, ISO 27001, ISO 20000) SQA and Process Assurance Services SW Standards - CMMI, Agile ISO 9001, PMBoK Business Analysis Consulting and Training Program Management Office Metrics Based Improvement Remote Process Assurance Process Automation and Reengineering Training, Auditing, eLearning Enterprise Risk and Continuity Management (ISO 27001, PCI-DSS, BS25999, SoX, HiPAA, COSO) Performance Enhancement Consulting (BPR and Six Sigma) Supporting Infrastructure GRCPerfect © Adaptive Processes 10+ eLearnings Adaptive Toolkits ISO 9001, 27001, Audit.. QMS, ISMS, ITSM, BCMS Be with the Best. 5 Successfully Completed ISO 27001 (In progress) © Adaptive Processes Consulting Experience World Class Processes! 6 Clients for ISO 27K Definition, Audit and Training © Adaptive Processes Consulting Experience World Class Processes! 7 Managed ISMS services Complete ownership and accountability of compliance activities for ISMS and BCMS Multi-client experience to improve organization’s processes Significantly reduced over all cost Comprehensive process and compliance management system Zero recruitment or training cost Access to Adaptive repository, elearnings Clients who have benefited significantly – – – – – – Bharti-AXA Ness technologies India JuriMatrix Legal Services MACH Teledata Empower Research V2Soft © Adaptive Processes Consulting Experience World Class Processes! 8 Client testimonials • I find it very easy to do business with you. Thank you for the contribution to our system. We have a great and open working relationship. We really respect your contributions in helping our organization. – Puneet Chaddha (Head-Delivery, Ness Technologies) • Adaptive has been prompt and fast in responding to our requirement. I am extremely happy with their people competence, and range of service provided. Adaptive would be my obvious choice for any of our process needs. I would recommend this team to my circle. – Santosh Kumar (Head-Quality, Infinite Computer Solutions) • I have found Adaptive to be very professional and committed. Adaptive has a very good and sound grounding in terms of producing good software applications for Project Management and for QMS. – Muktesh Murthy, Head IT Global Delivery at Sigma Aldrich • Excellent workshop and a faculty with deep knowledge. – Manoj Nair, Process Manager - Ma Foi © Adaptive Processes Consulting Experience World Class Processes! 9 GRCPerfect – Enterprise Governance, Risk and Compliance Solution • Governance, Risk and Management System for ISO 27001 • Complete data management for – – – – – – – – – – Asset management – Services, Movements Threats and Vulnerabilities Business impact analysis ISMS Management reviews ISMS Audits Incident tracking Material movement tracking Visitor tracking Request management Capacity management • Complete ISMS processes, templates, guidelines and checklists • Data control with complete role based permissions © Adaptive Processes Consulting Experience World Class Processes! 10 Adaptive Management System • Complete repository for ISO 27001 • All processes in professionally developed • 25+ Processes • 40 + Templates, • 20+ Guidelines • 20+ Checklists • Elearning for ISO 27001 • All processes editable by Client • Audited more than 10 times by various certification bodies and audit © Adaptive Processes Consulting Experience World Class Processes! 11 GRCPerfect – Enterprise Governance, Risk and Compliance Solution • Available to the Client as an Open-Code option which enables Client to obtain the source code of the product • On-site support for customization • Best practices drawn from internationally renowned organizations • Configurable to company’s requirements – Supports multiple life cycles • Built on industry standard .Net/SQL Server architecture • Completely web-based with light-weight interface suitable to work on internet © Adaptive Processes Consulting Be with the Best! 12 Adaptive eLearnings • eLearnings available for – ISO 27001 – Internal Audit – BS 25999 • Web-based eLearning • Has built in quizzes to test understanding • Provided as complementary product with GRCPerfect • Customized trainings can be provided for organizational specific needs © Adaptive Processes Be with the Best. 13 Benefits of GRCPerfect • Substantially reduced effort in best practices adoption and implementation • Complete automation of project management artifacts and reporting – significant savings on project management effort • Significantly reduced project management effort in metrics data collection and reporting • Senior Management and client visibility into Organizational, Account and Project level performance parameters • Significant help in ongoing process sustenance beyond assessment © Adaptive Processes Consulting Experience World Class Processes! 14 ISO 27001 Standard Compliance © Adaptive Processes Consulting Experience World Class Processes! 15 ISO 27001 Compliance Process Area GRCPerfect Module 4.2 Establishing and managing the ISMS No data requirement 4.3 Documentation requirements No data requirement 5.1 Management commitment Skill gap Training Management 5.2 Resource management Management Review 6 Internal ISMS audits 7 Management review of the ISMS 8 ISMS improvement © Adaptive Processes Consulting Process Compliance Data Compliance Audit Management Management Review Continual Improvement Experience World Class Processes! 16 ISO 27001 Compliance Process Area GRCPerfect Module Security Policy No data Security Organizations No data Asset Classification and Control Training Physical and Environmental Security Visitor Management Communications and Operations Management IT Checklists Systems Development and Maintenance © Adaptive Processes Consulting Data Compliance Asset Master Personnel Security Access Control Process Compliance Access Control Matrix Review Experience World Class Processes! 17 ISO 27001 Compliance Process Area Security Incident Management Business Continuity Management Compliance © Adaptive Processes Consulting GRCPerfect Module Process Compliance Data Compliance Incident Tracker Business Impact Analysis Supplier Contacts Employee Contacts Audit Management Experience World Class Processes! 18 Module Demonstrations © Adaptive Processes Consulting Experience World Class Processes! 19 © Adaptive Processes Consulting Experience World Class Processes! 20 © Adaptive Processes Consulting Experience World Class Processes! 21 © Adaptive Processes Consulting Experience World Class Processes! 22 Feedback from Participants Feedback Analysis Action Items for improvement © Adaptive Processes Consulting Experience World Class Processes! 23 Define Agenda (ISO 9k/ 27K/ 20K / PMR etc.) Track Attendance Select Agenda Checklist Review Open Agenda Items from Previous meetings Plan meeting Prepare Notes and Discussion Points Invite Attendees Create Action Items Reporting Meeting Effectiveness Action Items Closure Track and Verify Action Items to Closure Apply Audit Checklist Generate Audit Schedule Email Intimations to Auditors and Auditees Plan Audit Reporting Email Reminders to Auditors and Auditees Report Audit Findings against set criteria Tracking Action Items Management Review Audit Findings Category Closure Status Audit Findings Trend Adaptive advantages End to end ISMS services Minimum 3 months of time and 50% of cost savings over traditional methods of implementation Comprehensive ISMS process definition and implementation system (GRCPerfect) Consulting and training services multiple models ISO 9001, ISO 27001, ISO 20000, CMMI, Agile, BS 25999 ISO 27001 eLearning for continuous learning ISMS sustenance and assurance services Process improvement using Six Sigma methodology 10+ projects - Matured implementation methodology © Adaptive Processes Consulting Experience World Class Processes! 26 Adaptive advantages • Strong belief in client satisfaction and mutually beneficial partnership • Open code product • Emerging company • Flexible • Dedicated service • Proven competence • Cost effective © Adaptive Processes Consulting Experience World Class Processes! 27 Thank you for providing us an opportunity to present ourselves to you and hoping for a long mutually rewarding relationship. Our contact details Email: [email protected] Cell: +91.9880.64.7936 / +91.9343.79.4800 #51, 3rd Cross, Church Street Koramangala 6th Block Annex, Bangalore – 560095 www.AdaptiveProcesses.com Blog: www.AdaptiveProcesses.BlogSpot.com LinkedIn : http://www.linkedin.com/company/adaptive-processes/