Tag Archives: ISO 31000

HawkSight SRM unveils latest version of “game-changing” security risk management software

HawkSight SRM has launched HawkSight Software V2, the latest variant of the company’s ISO 31000-compliant, award-winning security risk management platform. HawkSight Software V2 is powered by Esri and its enhanced API and mapping interface is helping security teams rapidly review, assimilate and respond to the latest information and incident data impacting their portfolio.

Putting strategic, operational and tactical security risk assessment, mitigation and management at its clients’ fingertips is the company’s goal. The software is scaleable to suit even the biggest of global conglomerates and can include offices, project sites, fixed and mobile assets as well as business travellers in its project portfolio.

New for V2 are selectable mapping layers including street map, topographical and satellite overlays. Enriched incident analysis tools are also included with cluster, heat mapping and incident charting.

The latest version of the software reflects the growing demand for an enterprise security risk management approach which dovetails into enterprise-wide risk reporting and also supports organisation-wide collaboration.

HawkSightSRMSoftwareV2

API configurations are already agreed with a number of leading incident data and tracking feeds including Protection Group International and Vismo. All data and incident feeds are delivered to a single mapping overlay, in turn putting security professionals in the driving seat of analysis for critical assets.

Locations and Points of Interest can be mapped and incident analysis carried out based on timeframe, incident type and incident source. The end result is instant visualisation of critical information (including live tracking if required).

HawkSight SRM’s powerful reporting tools allow the creation of bespoke reports and risk modelling which together adds up to a system which can deliver business-critical information at every level of an organisation.

Paul Mercer, managing director of HawkSight SRM, commented: “We’ve listened to our clients and HawkSight Software V2 is set to deliver the enterprise-wide collaborative tools they tell us they need. Critically, it allows them to quantify risk and financial exposure to the business and apply mitigation measures which reflect risk appetite and ensure best deployment of budgets. HawkSight Software V2 is also delivering the kind of information overview that security risk professionals and business leaders need to make informed and timely decisions. Further improvements to customisation and the embedded e-learning tools mean that developing and adopting Best Practice can be achieved from one subscription.”

Mercer concluded: “We’re excited to be talking to businesses across a host of sectors as diverse as hospitality, professional services, healthcare, oil and gas, manufacturing and logistics about how we can revolutionise their approach to security risk management.”

Leave a comment

Filed under Risk Xtra

Lynn Watts-Plumpkin appointed director and general manager at IQ Verify

The IQ Group – which encompasses Industry Qualifications and the Institute of Administrative Management – has announced the appointment of Lynn Watts-Plumpkin to lead the development of its new certification body entitled IQ Verify.

IQ Verify will specialise in the certification of management systems, products and services, and is in the final stages of UKAS accreditation to ISO 17021 and ISO 17065. This development will allow the IQ Group to provide both individual certification through its awarding organisation as well as organisational certification through IQ Verify. It will be the first multi-sector organisation in the UK with this capability.

Lynn Watts-Plumpkin, whose background includes significant roles at both the NSI and the SSAIB, said: “I’m delighted to be joining the IQ Group at this time, and am excited by the opportunity to lead a new certification body. IQ Verify will be distinct in its offering. The focus will be on standards associated with corporate resilience, the investigations sector and PSC-1 within the security industry. We will also be developing inspection schemes for a number of economic sectors and trade bodies. Announcements will be made over the coming months.”

Lynn Watts-Plumpkin: director and general manager at IQ Verify

Lynn Watts-Plumpkin: director and general manager at IQ Verify

Raymond Clarke, CEO of the IQ Group, said: “We’re delighted to have been able to attract a person of Lynn’s experience and ability to IQ Verify at a very important time in its development. We’ve been working towards UKAS accreditation for a year now, and have conducted a range of trial assessments in advance of UKAS approval to positive acclaim.”

Clarke added: “IQ Verify will be operational from Monday 1 December, offering inspections to BS 102000 (Investigative Services), ISO 27001 (Data Security), ISO 31000 (Risk Management) and ISO 22301 (Business Continuity). We will be offering PSC-1 and ISO 9001 from January, by which time we expect to have obtained full UKAS accreditation.”

*For further information on the work of Industry Qualifications visit: http://www.industryqualifications.org.uk/

Leave a comment

Filed under Risk UK News

UKAS accredits Certification International for latest information security management standard

Certification International – a leader in the assessment and certification of international, national and industry standards – has received accreditation from UKAS for the revised ISO 27001:2013 standard.

ISO 27001:2013 specifies the requirements for establishing, implementing, maintaining and improving an information security management system (ISMS).

There are now more than 17,000 registrations worldwide and revisions to the standard have taken into account the practical experience of organisations using it. The changes were influenced by the ISO requirement that all new and revised management system standards must conform to the high level structure and identical core text defined in Annex SL to Part 1 of the ISO/IEC Directives and a decision to align the standard with the principles of ISO 31000 (risk management).

Revisions to the standard have placed greater emphasis on setting objectives, monitoring performance and metrics and a requirement for management commitment requirements to focus on leadership.

An important standard for all companies

Speaking about this latest development, Certification International’s managing director John Pymer said: “Receiving accreditation for the latest information security management system ensures we provide clients with a high quality service. Assessing companies to the latest standards not only benefits our clients but also plays a key role in our business strategy. By placing Certification International as a leader in the certification industry it will help us grow, not only in the UK but on a global scale.”

ISO 27001:2013 specifies the requirements for establishing, implementing, maintaining and improving an information security management system

ISO 27001:2013 specifies the requirements for establishing, implementing, maintaining and improving an information security management system

Pymer added: “ISO 27001:2013 is an important standard for all companies, whatever their size or sector. It’s vital for companies to underline their responsible practices through the achievement of such a well-recognised standard. Certification International’s experience means we can partner with companies looking to implement operations which allow them to integrate the latest information security management systems into their business.”

Certification International will be working closely with all clients to ensure they’re assessed against the new requirements at their next scheduled visit to achieve transition by the deadline of 1 October 2015.

Certification International’s UK business manager Emma Fawcett-Jones commented: “Clients who are already certified to ISO 27001:2005 will have to transition to the new standard before July 2015. There are two ways to achieve this. The first is to prepare themselves and make sure they’re ready for the transition review at the next surveillance or reassessment audit that’s due in their schedule before the transition date. Clients who choose this option will have to complete a transition review checklist and provide it before the audit date for the auditor to review. The second option is to undergo a separate transition review audit.”

Fawcett-Jones also stated: “In order to help clients through the transition we’ve published guidance and a checklist to send to all of our clients who have achieved the outgoing standard so that they have sufficient time to prepare themselves for the change.”

UKAS accredited bodies are assessed against internationally recognised standards to demonstrate their competence, impartiality and performance capability.

Part of the SOCOTEC Group, Certification International is a global organisation offering assessment, analysis and certification to a variety of clients across a range of standards.

For more information visit: http://www.cert-int.com

Leave a comment

Filed under Risk UK News