FRAMEWORKS

In the security industry, there are many frameworks.  In fact There are about 250 different security frameworks used globally developed to suit a wide variety of businesses and sector needs. There's the International Standards Organization (ISO 27001/27002) which is a widely known mature framework that can be used across a wide range of types and sizes of businesss. There is COBIT5 which provides a high level structure for building governance that is risk mitigation centric while aligning IT with Business goals.  And, of course, there is NIST which contains a collection of information security standards and best practices.  Least we forget, the Industry-Specific Standards such as PCI DSS (for credit card handling), HIPAA (safeguarding health/medical information) as well as newcomer local regulations such as the European GDPR (General Data Protection Regulation).

​

When the ism4soho.org was conceptualized, it was founded on several beliefs about the SOHO and its Information Security posture:  

1) The Small Office/Home Office is an underserved Market
2) Because of #1, things can be done alot better.
3) Your digital security is only as safe as the least safe company you do business with or the least safe device you use.

​

So what does ism4sohos' frameworks do for you?

It keeps you right where you should be - engaged in your business and responsible for making decisions.   ism4soho.org has cut through the daunting effort of deciding which framework and best practices apply to SOHO organizations such as yours.  We have tailored an Information Security assessment program that will provide a systematic review of your technology supporting your business processes.  The final result is a score card of your current security posture including potential remediation solutions.  This means you can make informed decisions based upon a foundation of fact.  

  So Which one is right for you? 

​

​