Software for information security management according to ISO 27001/2: The HiScout ISM module is a powerful engine for setting up and constantly optimising an information security management system (ISMS). In doing so, HiScout not only focuses on the documentation of work results, but also supports users by standardising and automating complex and distributed security processes in their daily workflows.
Large organisations with numerous subunits appreciate the client management and preconfigured authorisation system. Data model, user interface and evaluations can be easily and quickly adapted to individual requirements. With the innovative questionnaire technology, an automated questionnaire procedure, data collection is carried out directly on site with employees and service providers. Through versioning, historisation and individual release processes, change histories are fully traceable and audit-proof.
When setting up and certifying your Information Security Management System (ISMS), you proceed according to the PDCA cycle.
Plan: Deposit of the basics of the management system including relevant regulations, contractually agreed specifications and individual industry standards, e.g. SOX, Euro-SOX and BaFin.
Do: Master data collection and protection needs assessment, risk analysis according to common market standards such as ISO 27005, ISO 31000 or BSI 200-3, action planning and central action management with tracking and reporting, handling of security incidents
Check: External audits and self-assessments with reporting at the push of a button
Act: Continuous improvement
HiScout ISM can be expanded into an integrated management system with a common database. Use your organisational master data, protection needs assessments, risk analyses and action planning across the board in the HiScout ISM, HiScout Data Protection and HiScout BCM modules.
