For many organisations, it is simply not an option to invest in a dedicated specialised resource for roles such as Chief Information Security Officer, Data Protection Officer, Information Security Architect, Chief Information Officer or Chief Technology Officer. ISAS has designed an annual subscription service that is tailored to a client’s specific needs for any, or all, of these services.
Data Protection Officer (DPO) as a Service
With the coming into force of the EU General Data Protection Regulation in May 2018, many organisations, particularly those in the Public Sector, have found themselves being mandated to have a DPO. The specific requirements in terms of both competency and independence from conflicting roles in an organisation make this a particularly difficult role to fill internally.
The senior consultants in ISAS hold a variety of Data Protection qualifications and are members of Data Protection organisations such as Association of Data Protection Officers and the International Association of Privacy Professionals (‘IAPP’).
Chief Information Security Officer (CISO) as a Service
In this scenario, the client and ISAS determine an appropriate amount of onsite time over a defined period (typically 12 months) based on an initial baseline assessment and gap analysis. This feeds into an agreed work plan that sets specific Information Security improvement objectives. It also provides the organisation with ad-hoc and on-demand access to a CISO without the costs of a full time solution.
All ISAS CISO resources have a minimum of 15 years Information Security experience and have held senior Information Security roles in public or private sector organisations. The CISO as a Service subscription also provides emergency access to ISAS and the Critical Incident Response Team.
Information Security Architect (ISA)
ISAS consultants regularly work with clients to design, build and implement enterprise-class security systems aligned with corporate business and technology strategies. Our independence provides assurance and confidence to clients that the design proposed is truly the best 'fit' for them, and not a solution or technology which they are being pitched. ISAS does not sell any Information Security technology components such as firewalls, anti-malware or encryption products.
Chief Information Officer (CIO)/Chief Technology Officer(CTO)
ISAS counts a number of senior CIO, CTO and CISO-level staff among its senior consultants. We are therefore well placed to assist with, or lead, the development and implementation of ICT strategies.
ISAS have developed ICT strategies for a number of clients in the Public and Private sectors, and have provided interim CIO resources while clients take time to recruit a suitable long-term appointment.
ISAS has worked with organisations in the Public and Private sector for many years providing these outsourced roles. Our experienced team have become fully immersed in each of the clients they serve, and enjoy the backup and support of the rest of the ISAS team in that delivery. Our clients are assured that there is always someone available to them, even when the primary role holder is not.