HomeServicesSecurity ComplianceISO27001
 

NIST / ISO 27001 Compliance




Lunarline provides comprehensive implementation services for ISO 27001.  Lunarline is a proven leader in providing Information Security services to the government and commercial organizations.  Our security professionals have developed a proven system to support the implementation of ISO 27001 Information Security Management System (ISMS).

Lunarline provides a comprehensive solution to our customers that includes:

  • Risk Assessment – We train your employees and conduct the initial risk assessment.
  • Policy Review and Development – Our security experts review your current policies and make updates and we also develop required policies where needed.
  • Risk Treatment – We work with you to develop the Risk Treatment Plan and determine the security controls from ISO 27002 to implement.
  • Statement of Applicability – Our team develops the tracing from your current implementation of controls to the ISO 27002 controls, exclusions and status of future controls.
  • ISMS Systems – Our team will help to implement the required elements of the ISMS including document control, record control, security objectives, metrics, data analysis, and corrective and preventive action systems.
  • Security Awareness Training – Our team will develop custom training for your organization and deliver the awareness training to your personnel. We will establish a plan for awareness training with your security personnel.
  • Incident Management – Our team evaluates your current system and makes recommendation on improving or implementing an incident management system.
  • Internal Auditing – We provide internal auditor training to your employees and provide the initial internal audit of the system.
  • Corrective and Preventive Action System – Our team will evaluate and improve any existing system or help in implementing a new system using SharePoint, Excel or other software to support your organization
  • Management Review – Our security team will facilitate the data analysis, reporting and preparation for the Management Review meeting. We will also guide you through the first meeting and provide support to analyzing and improving your system.


Our security team can also assist with the integration of DoD, NIST and other standards into your ISO 27001 Information Security Management System.


The Lunarline Difference
Our security team provides you with the level of support you need.  Many organizations are busy and do not have the resources to build an ISMS from the ground up.  We specialize in providing hands-on implementation support to include:
•    Writing your policies and procedures – based on interviews with your personnel to ensure we capture how you do the work (we don’t impose our processes on to you).
•    Performing activities such as the Risk Assessment, developing the Risk Treatment plan, developing the Statement of Applicability, Training your employees, performing the internal audits, guiding your management review meetings, writing up corrective actions and working with your team to resolve the open issues.