In strong information security management systems, maintenance and measurement of efficiency is a focal point for improvement. Both managers and ISMS implementation teams are interested in progress results, as a proof of their efforts and investments.
Maturity assessment of the existing management system or areas of work are relevant before new investments or when a managing team is changing.
Results are presented in extensive form – report detailing assessed areas, methodology, evidences and findings; also, an executive summary shall be presented to stakeholders to obtain real sense of the maturity of selected service.
Our maturity assessment service is based on COBIT, ISACA relevant guidelines for COBIT usage and also other applicable standards such as ISO 15408, 15504, 20000, etc.
1:1 interviews are conducted with stakeholders, by the use of personalized questionnaires. Evidences and information are gathered, analysed and syntethized in order to obtain an objective measure and score on the maturity scale.
The deliverable for the maturity assessment exercise are questionnaires, meeting minutes, phase reports, final report and presentation for executives.