INFORMATION
SECURITY

Something is clearly wrong. Whenever your business fixes an information security-related issue, it is never long before another one arises.

This frustrating cycle continues until you’re forced to admit that ordinary troubleshooting isn’t getting to the heart of the problem.

Start by calling Mobius. Our information security services – encompassing governance, people, process and technology – are designed to identify any and all underlying problems in your organisation.

Once we’ve discovered the root cause, we develop plans and assist you with the remediation and adoption itself, always ensuring our solutions make sense for you from a business point of view. We walk away when it is working – never before.

THE MOBIUS ADVANTAGE

EXPERTISE

  • Assessment against best practices and standards
  • Development of governance artefacts – policies, standards and processes
  • Development of Information Security Management System (ISMS)
  • Development of Information Security operating models, programmes and plans
  • Implementation and remediation experience
  • Consultant certifications: ISO27000 Lead Implementers, CISM, CRISC, CISA

RESULTS

  • Improved information security maturity
  • Reduction in information security-related risks
  • Improved compliance and reduction of audit findings
  • Practical and sustainable
  • Adoption of best practices and standards, customised to your business’s unique situation
  • Fast-track governance and management-related problems

ARTEFACT REVIEW, DESIGN AND DEVELOPMENT

The current Information Security governance landscape across many organisations comprises numerous policies, standards and other related documents (collectively referred to as ‘governance artefacts’). These artefacts are developed and accumulated over a number of years, and consequently, there may be duplication, overlap and possible contradiction amongst these governance artefacts.

The Mobius approach to Information Security artefact review, design and development enables organisations to align their governance artefacts with the organisation’s Information Security governance framework and identify any gaps based on this, review and update the content of the Information Security governance artefacts to ensure relevancy and alignment with the latest regulations and standards and rationalise and consolidate the Information Security governance artefacts.

GAP
ASSESSMENT
ROADMAP

The Mobius Consulting Information Security gap assessment enables an organisation to evaluate the current state of their Information Security against a number of internationally recognised frameworks. The result is a holistic understanding of your current maturity in relation to Information Security, as well as a view of key Information Security gaps within the environment, from a Governance, People, Process and Technology perspective.

By comparing your actual Information Security practices against industry-leading best practices, companies can determine key Information Security gaps, and furthermore identify where vulnerabilities and risks are imminent. But, more than that, an Information Security gap assessment provides a clear path forward for improving your Information Security posture.

OUTSOURCED
SERVICES

The dilemma that most organisations are faced with is a shortage of Information Security and Information Privacy resources, and companies often lack the skills to ensure the success of their Information Security and Information Privacy Programmes.

Mobius Consulting has released a new range of Outsourced Services within our Information Security, Information Privacy, and Cyber Security service lines.

We will assist with the management and execution of an Information Security Programme that supports an Information Security Management System (ISMS) and incorporates governance, roles and responsibilities, technological solutions and continuous monitoring across Information Security.

SKILLS
ASSESSMENTS

The Mobius Information Security Skills Assessment is designed to accurately evaluate your organisation’s Information Security workforce. The assessment captures the level of proficiency for each required skill, so organisations understand current capabilities and can plan for future skill capabilities, in alignment with organisational goals and digitisation.

ARTICLES

XSS TO SHELL

ZERO-DAY ADVENTURES – UNKNOWN UNTIL WE FOUND THEM For the astute among you, you’ll notice that the chaining of these types of exploits has been seen/used often enough, but the implications thereof are often overlooked. In this write-up we delve a little deeper into a real life example of how we uncovered three zero-days in […]

STRENGTH IN DIVERSITY WITH MOBIUS CONSULTING

  DIVERSITY IN LEADERSHIP AROUND THE WORLD   A recent study by Boston Consulting Group showed that companies that value diversity amongst staff and senior management increased their revenue by 19%. The study found that “increasing the diversity of leadership teams leads to more and better innovation and improved financial performance.” It looked at 1700 […]

5 STEPS TO CREATING A CYBER SECURITY INCIDENT RESPONSE FRAMEWORK

With Patrick Ryan, Amanda Hechter and Raymond du Plessis from Mobius Consulting        The NIST Cyber Security Incident Response Framework   Cyber security breaches should be taken as a “when” and not an “if” occurrence, especially given the rise in cyber attacks due to remote working. The wrong time to put your cyber security incident response plan in place is […]

PROJECTS

INFORMATION SECURITY POLICY UPDATE FOR A FINANCIAL SERVICES INSTITUTE

A well known Financial Services Institute required Mobius Consulting’s assistance in refreshing their Information Security and Information Technology Risk Management policies and standards, as well as their associated controls catalogue, to ensure the relevance of both Information Security and Information Technology controls across their hybrid IT environment – which operates both on-premise and in the cloud. This entailed that Mobius Consulting […]

BIG DATA GOVERNANCE AND SECURITY IN THE FINANCIAL INDUSTRY

In line with changing banking regulatory requirements, a client in the financial services industry required Mobius Consulting’s assistance to perform a detailed Data Governance and security review on one of their critical big data repositories. Specifically, Mobius helped the client define data flow diagrams and review current access to the data within the critical big data repository.

MEASURING THE INFORMATION SECURITY METRICS FOR A FINANCIAL INSTITUTION

A well known Financial Institute identified a need to enrich their Information Security strategy and enablement practices to cater for a number of requirements across compliance, risk and external regulations. In order to meet some of these requirements, they engaged Mobius to assist with the development and execution of information security metrics that support and […]

Close Bitnami banner
Bitnami