SureCloud adds ISO 27001 functionality to compliance SaaS

A woman's hand underneath a small white cloud with icons representing different types of data raining out of it on a black chalkboard background
(Image credit: Shutterstock)

SureCloud has added IT process automation functionality to its compliance Software-as-a-Service (SaaS) offering in a bid to help organisations more easily meet their ISO 27001 compliance obligations.

The company said one of the main barriers to more widespread adoption of ISO 27001 is that often organisations do not possess the in-house knowledge and expertise, nor do they know where to start. ISO 27001 is the recognised industry standard for establishing, implementing, operating, monitoring, reviewing, maintaining and improving an Information Security Management System (ISMS).

SureCloud pointed to the 2013 Information Security Breaches Survey from the Department of Business Innovation & Skills survey which found that only 25 per cent of respondents have fully implemented ISO 27001, and a similar number haven’t started nor do they intend to.

The organisation has added process support for ISO 27001 to its GRC platform. Described by SureCloud as “ISO 27001-in-a-box,” the service automates the entire process of establishing, managing and monitoring an ISMS. This not only includes processes to establish the ISMS such as asset management, information classification, risk assessment and risk treatment, but also processes to support ISO 27001 controls, such as third party management, end user provisioning and incident response.

There is also an integrated evidence library provides centralised records management, and user definable dashboards provide a ‘role-based’ view to ensure compliance is achieved as efficiently as possible.

“SureCloud’s ISO27001-in-a-box solution provides organisations of all sizes with a more robust approach to information security management and allows them to more effectively manage their security posture,” said Richard Hibbert, chief executive of SureCloud.

“Our series of ready-to-go process templates based on Electronic Forms, Workflows and Dashboards allow users to complete their information assurance programmes up to 50 per cent faster than with any manual approach. Additional benefits come with savings in resources and training, with the ability to start small and scale up across many different areas of the business over time, whilst ensuring important domain expertise is kept within the organisation, ” Hibbert added.

Rene Millman

Rene Millman is a freelance writer and broadcaster who covers cybersecurity, AI, IoT, and the cloud. He also works as a contributing analyst at GigaOm and has previously worked as an analyst for Gartner covering the infrastructure market. He has made numerous television appearances to give his views and expertise on technology trends and companies that affect and shape our lives. You can follow Rene Millman on Twitter.