ISAS regularly assist clients on significant projects which might be defined as the selection or development of new systems or securing certification for competitive advantage.
System Design & Procurement Support
ISAS has amassed a team of highly experienced system designers and procurement specialists in the team. ISAS has assisted many clients over the years in outlining the options available, and pitfalls to be aware of, when it comes developing or selecting large and small systems. Some of these specialists have extensive experience in the area of procurement including RFT/ITT creation, publication, response evaluation, contract award and delivery oversight. This is especially the case in the Public Sector where it is mandated, but also in the Private Sector for those organisations that value procurement processes.
ISO 27001 Preparation
ISO 27001 is an internationally recognised standard for information security and defines a process based approach for establishing, implementing, operating, monitoring, maintaining, and improving an Information Security Management System (ISMS). Organisations are increasingly facing the challenge of demonstrating to clients, potential clients, investors, regulators or other stakeholders that they have robust governance processes in place to manage the security of their information assets thereby ensuring their business continuity as a strategic supplier or operator within their sector.
ISAS provides a full range of support services for organisations wishing to achieve ISO27001 certification. This can start with a Gap Analysis assessment which provides the basis for a pragmatic programme to address the gaps identified. A similar Gap Analysis can be completed ahead of an impending audit to ensure continued certification.
DPIA/Privacy by Design/Risk Assessment
New projects that entail the processing of personal data may require a formal Data Protection Impact Assessment to be undertaken. This could need to be produced if there were to be an inquiry from the Supervisory Authority (the Data Protection Commission in Ireland). In the case of projects entailing less risk to the data subjects, the GDPR calls for Privacy by Design to be observed. Existing processing activities can be subjected to Risk Assessments as a matter of best practice.
Many of the ISAS team that would support an organisation in the area of Developer Training have themselves been developers, or part of a Development Team. The experience, and multi-sectoral expertise, that they bring would be very difficult for any client to replicate and instantly add value. Our engagement is to support the client, not to take on development roles or displace existing developers.