Orange Parachute's Information Security Assessments and Audits evaluate your organization's information security program, services and controls against the ISO 27001 standard. This risk assessment and audit serves as a foundation for enhancing corporate governance and establishing an Information Security Management System.

Information Security & Risk Management Assessments
Orange Parachute's Information Security and Risk Management Assessments evaluate an organization's operational security posture. Each risk assessment results in a gap analysis report which is designed to give your team the insight and recommendations needed to ensure adequate protection of your company's most valuable assets: information.

In addition to evaluating the existence of information security controls, Orange Parachute risk management assessments recognize the maturity of controls, rating them on a scale of 0 to 5, utilizing the SSE Capability Maturity Model. This rating assists with prioritizing risk management efforts and serves as a roadmap for the remaining phases of Information Security Management System implementation.

Types of Assessments:

• Compliance Assessment
• Security Program Assessment
• Security Risk Management Assessment

Information Security Assessment Components:

• Business Continuity
• Human Resources Security
• Incident Management
• Network Security
• Physical Security
• Vulnerability

Information Security Audits / ISO 27001 Audits
Orange Parachute can also provide ISO 27001, ISO 20000 and ISO 9001 certification audits through our accredited registrars.

Contact Us for further information regarding our Information Security Assessments & Audits.