Security Policies needed for Security for ISO 27001 Standard
Cryptographic Controls and Key Management
Development of a policy to cover cryptographic controls and key management
Security Incident Management
Development of a security incident management policy and associated registers. Training for staff in how to use them.
Conduct testing of the security incident management policy
Network security solution (Managed SIEM & SOC)
A SIEM (Security Information and Event Management) is a specific kind of technology, providing network visibility in a security context (by indicating suspicious/illegitimate activity through set-up rules and correlation intelligence), and enabling security analysts to act on suspected threats.
A SOC (Security Operations Centre) encompasses the People, Processes, as well as Technology involved in protectively monitoring a network, responding to incidents, and researching/actively searching for known/unknown threats.