Resiliam is more than a consulting firm. Not only will we provide your company with the training and the tools you need to achieve certification, we’ll help you maintain that level readiness on an ongoing basis and attain true Organizational Resilience.
Our services include:
- ISO 27001 Consulting
- ISO 22301 Consulting
- Enterprise Risk Management
- Information Risk Management
- Policy Creation and Remediation
- HIPAA Compliance Consulting
- Program Development
ISO 27001 Consulting
The ISO 27001 standard for Information Security Management Systems (ISMS) is the most widely recognized security management standard in the world. It sets out detailed controls for establishing, implementing, maintaining and continually improving an ISMS within the context of an organization. Achieving ISO 27001 certification tells potential clients and customers that your firm is committed to internationally recognized best practices in Information Security, that security has been integrated into core business processes, and that your firm is ready to maintain that level of commitment moving forward as the risk-environment evolves.
The industry-leading Resiliam team has helped more than forty clients achieve ISO 27001 certification since its founding as Security GRC2 in 2006. Key to our success is the proven, proprietary intellectual property we’ve developed over a decade in this industry. Working with an organization’s leadership, we customize these materials to fit each client’s unique processes and infrastructure, while building teams within the client organization that are responsible for data collection and the implementation of the ISMS. Each of our consultants works closely with the client to ensure that all systems, policies and data meet the standards set out in ISO 27001. We make sure clients are capable of maintaining their ISO 27001 processes and are ‘audit-ready’ for their annual surveillance audits needed to maintain its certification.”
As well as improving their ability to respond to information-security audits and comply with Outside Counsel guideline requirements, our clients tell us that achieving ISO 27001 certification has helped with:
- IT Governance– Alignment between policies, procedures, and processes.
- Improved RFP Responses– Marketing can cite ISO 27001 in RFP responses to win new client business.
- Standard of Care– Nearly half the AmLaw 100 is certified or working towards certification. ISO 27001 is now a standard of care across the legal sector.
- Decreased Cyber Insurance/Malpractice Premiums– Top insurance providers (ALAS, Aon, Marsh) offer reduced cyber-insurance premiums for ISO-certified firms.
- “Lawyer Security Awareness”–The prestige of ISO 27001 helps change lawyer attitudes, once they understand that certification can open up new business opportunities.
ISO 22301 Consulting Services
The ISO 22301 standard for Business Continuity Management Systems (BCMS) describes the systems and processes by which a firm can best prepare for and recover from unexpected events that may impact the firm’s ability to operate.
Resiliam clients seeking ISO 22301 certification will receive our proven, proprietary intellectual property, which more than satisfies the ISO requirements for audit. Our consultants will then work with the firm’s leadership to customize all relevant materials to fit each client’s unique processes and infrastructure, while building teams within the client organization that are responsible for data collection and the implementation of the BCMS. Each consultant works closely with the clients to manage the evidence-collection process, ensuring that all policies or data meet auditing expectations and the standards set out in ISO 22301.
Enterprise Risk Management
Resiliam offers clients expert risk assessment services, evaluating both internal and external risks to the organization. Our engagement will include an on-site interview with firm stakeholders responsible for information security, analysis of interview results and a detailed report with recommendations for short- and long-term improvement.
Please contact Resiliam to discuss your firm’s particular needs with one of our team.
Information Risk Management
Resiliam will use the ISO 27001:2013 framework as an objective standard to measure a firm’s current security practices. By aligning security policies and practices with the recognized international standard, our clients will improve governance and control over their overall information security, risk and compliance activities. Please contact Resiliam to discuss your firm’s particular needs with one of our team.
Policy Remediation Services
Resiliam brings years of technical-writing expertise to clients in need of policy remediation. Our technical writing team will work one-on-one with clients to evaluate existing security policies, then edit, rework, or redraft them to meet client, ISMS and standard requirements for audits as clearly and succinctly as possible. Please contact Resiliam to discuss your firm’s particular needs with one of our team members.
HIPAA Compliance Consulting
The Health Insurance Portability and Accountability Act (HIPAA) of 1996 contains a set of strict standards for the management of confidential healthcare information for firms operating within the U.S. Resiliam’s expert compliance consultants will help your firm meet those requirements, ensuring the security of all patient and organizational information. Please contact Resiliam to discuss your firm’s particular needs with one of our team members.
Resiliam is pleased to work with clients on the design and implementation of all new security programs within their organization. Our expert consultants will collaborate with clients both to develop new programs, and to produce any necessary materials and documentation associated with the program’s initiation and use. Please contact Resiliam to discuss your firm’s particular needs with one of our team.