PRISM Platinum Solution

The following platinum-level solution package is available for our clients. Please compare all of our standard packages to find the option to best suit your organization's needs.

Information Security Program Charter

Developed in parallel with other deliverables, the Information Security Program Charter template will ultimately be reviewed and approved by management and is intended to grant cross-functional personnel the authority and responsibility for PRISM activities. Accountability is explicitly assigned.

• Platinum solution includes 3 review periods by client
• Charter is delivered in Microsoft Word format for easy future modification by client

Information Security Policies

• Up to 14 complete policies - 12 benchmarked against the ISO 27001 international standard and as many as 2 additional policies addressing specific client needs
• Policies cover all security disciplines of ISO 27001
• Platinum solution includes 3 client review periods
  • 1st draft delivered
  • Client review #1
  • 2nd draft delivered
  • Client review #2
  • 3rd draft delivered
  • Client review #3
  • Final version of products delivered
• 2 years of policy maintenance under the following schedule
  • Deliver current version every 6 months, or at request of client
  • Client review #1
  • Updated draft delivered
  • Client review #2
  • Deliver final updates (semi-annually)

Information Security Standards

• Up to 16 complete information security standards - 14 benchmarked against the ISO 27001 international standard and industry best practices and 2 additional standards to meet specific client needs
• Standards cover all security disciplines of ISO 27001
• Platinum solution includes 3 client review periods
  • 1st draft delivered
  • Client review #1
  • 2nd draft delivered
  • Client review #2
  • 3rd draft delivered
  • Client review #3
  • Final version of products delivered
• 2 years of standards maintenance under the following schedule
  • Deliver current version every 6 months, or at request of client
  • Client review #1
  • Updated draft delivered
  • Client review #2
  • Deliver final updates (semi-annually)
• Completed standards are delivered in Microsoft Word and Adobe PDF format

Information Security Incident Response Plan

• Customized Information Security Incident Response Plan (ISIRP), benchmarked industry best practices and federal guidelines
• Platinum solution includes 3 client review periods
  • 1st draft delivered
  • Client review #1
  • 2nd draft delivered
  • Client review #2
  • 3rd draft delivered
  • Client review #3
  • Final version of products delivered
• 2 years of ISIRP maintenance under the following schedule
  • Deliver current version every 6 months, or at request of client
  • Client review #1
  • Updated draft delivered
  • Client review #2
  • Deliver final updates (semi-annually)
• Completed Information Security Incident Response Plan delivered in Microsoft Word and Adobe PDF format

Service Continuity Planning

• Complete Service Continuity plans for 7 systems or applications
• Platinum solution includes 3 client review periods
  • 1st draft delivered
  • Client review #1
  • 2nd draft delivered
  • Client review #2
  • 3rd draft delivered
  • Client review #3
  • Final version of products delivered
• 2 years of Service Continuity Plan maintenance under the following schedule
  • Deliver current version every 6 months, or at request of client
  • Client review #1
  • Updated draft delivered
  • Client review #2
  • Deliver final updates (semi-annually)
• Deliver in Microsoft Word and/or Adobe PDF versions

Shared Chief Security Officer (CSO) Services

• 88 hours per month (for 24 or 36 months) of shared CSO services. These hours can be used for either on-site or remote support of your organization's information security program, projects and initiatives