Information System Effectiveness
Information technology services need to comply with standards, good practices,
and regulations. In today’s environment, an organization requires IT not only to
support its business operation but also to strategically lead business
opportunity and good governance. Moreover, IT services need to have an effective
planning, controlling, and deployment.
IT Strategy Planning
Assess your IT capability of organization to understand the “as-is” maturity,
the “to-be” design, and gap remediation plan. Help to design the roadmap and
practical projects to meet business goal.
ITIL Implementation
Review the Information Technology Service Management (ITSM) capability level of
organization for service delivery and service support. Design and implement
service level management, IT service continuity management, availability
management, financial management, capacity management, service desk function,
incident management, problem management, configuration management, change
management, and release management.
Policy development and implementation
Understand the business operation and requirement to develop IT and information
security policies. Provide a mechanism to implement and enforce the policy to
organization.
Disaster Recovery Planning
Assess and define the disaster scenario and strategy to recover the information
system. Develop a detailed IT Disaster Recovery Plan (IT DRP). Test the plan and
perform awareness training.
Security Strategy Planning
Provide strategy of information security development and implementation based on
key domains of security aspects. Review, design, and propose the project deck to
implement good controls to mitigate security risks the organization may be
exposed.
ISO 27001 Information Security Preparation
Design and propose practical preparation steps for organization to implement ISO
27002 practice. Develop Information Security Management System (ISMS) for
effectively manage information security in IT and business operation.
Risk assessment and control
Identify, assess, and control security risks of IT services in organization.
Review risks based on our professional work program and provide practical
solutions to mitigate and control those risks.
Business Continuity Management
Perform Business Impact Analysis (BIA) and discuss with key management to define
appropriate Recovery Time Objective (RTO) and Recover Point Objective (RPO) for
organizations. Select the appropriate recovery strategy. Develop Business
Continuity Plan (BCP) and Crisis Management Plan (CMP). Facilitate the plan
exercise and perform awareness training.