Company Overview and System Characterization:

For detailed description of CyberGuards, including its mission, services, and target clientele, please refer to the company overview document linked Click Here!

The Information Security Policy:

• Purpose: Protect CyberGuard's information assets, ensure confidentiality, integrity, availability, and compliance.
• Scope: Applies to all information systems, assets, and users, setting objectives for risk management, compliance, and awareness.
• Framework: Implement ISO 27001-based ISMS and adopt a risk-based approach to controls.

Roles and Responsibilities:

• Department Heads/Managers/Supervisors: Ensure policy implementation, access compliance, training, and report incidents.
• IT Specialists: Provide technical support, implement security controls, and report breaches.
• Information Security Office: Identify risks, develop policies, communicate with audit teams, and promote awareness.
• Internal Audit: Evaluate security measures, provide recommendations, and conduct audits.

Review, Training, Awareness, and Compliance:

Refer to the provided sections for details on review processes, training, awareness, and compliance procedures.

This document provides a comprehensive overview of CyberGuards' Information Security Management System, outlining policies, principles, and procedures to safeguard information.

Link to Document Version Control

Link to Detailed ISMS Document