Neupart GmbH

Secure ISMS helps your organisation spend less time on IT Governance, Risk and Compliance management while allowing you to optimise your information security management and achieve continuous compliance with security standards and regulations.

Secure ISMS is an all-in-one information security management system that manages policies, IT controls and risk information that are in disparate locations throughout the enterprise. It creates continuous compliance by automating risk management and continuous improvement processes in an ISMS as defined in the ISO 27001 standard.

The Secure ISMS package includes these three Secure ISMS products:

• IT Risk Management
• ISO 27001 Policy & Compliance
• Business Continuity Planning

Secure ISMS supports all common information security standards and comes with ready-to-use content templates that optimise your time when managing your information security.

Key Features

• ISO 27001 Compliance
• ISMS Continous Improvement Processes
• IT Risk Management with ISO 27005 and NIST SP800-37/39
• Business Continuity Planning
• PCI DSS compliance
• Cloud vendor assessments based on the Cloud Security Alliance GRC Stack
• Manage recurring compliance activities
• Policy and security awareness management
• EU Data Protection Regulation
• Time saving templates for security policies, business continuity plans and threat catalogue
• Available as an on-premise software or as Software-as-a-Service

Make sure your company complies with the EU Data Protection Regulation - also known as the Personal Data Regulation. Make process, communication, and maintenance of your compliance program easier for everyone that works with it, or simply have to know it.

The EU Data Protection regulation comes into force on the 25th of May, 2018. It may seem far away now, but given what the regulation actually entails, it's not much time at all. 

So how do you get started? It may seem like a daunting task, knowing where to start and where to end. Not to mention the long list of process demands, and documentation of compliance which can be difficult to carry out without the right tools.

That's why we've launched the Secure GDPR which makes it easy for companies to establish the right processes and gain an overview of which documents are available and have been read by employees, suppliers and partners. The demand for compliance is met more effectively when you've got full control of your documents. In other words, it's easy to get started with the Secure GDPR and gain the necessary overview to be able to carry on meeting all compliancy standards.

Our new package includes some of the same great features that the Secure ISMS package does, but with these added main features:

• Great content and templates so you never have to start from scratch
• Data Flow Mapping
• Data Protection Impact Assessment (DPIA)
• Effective management of data breach notifications
• A Data Protection Officer dashboard providing a clear overview of the key areas in your compliance
• Gap analysis so you can keep an overview of your status and compliance
• Awareness quizzes and film on personal data protection to train your employees

The Compliance module in Secure ISMS helps you keeping track of the responses to compliance questions from various people. You can design your own questionnaires and response scales. Or you can use the accompanying questionnaires for ISO 27002 and PCI DSS. When you need to present a status report, just generate a report containing both overview tables and detailed responses.

Key Features

• Questionnaires for compliance analysis of PCI DSS and ISO 2700x
• Transform your security policy to a questionaire
• Security analysis of cloud suppliers
• Automatic reports with overview and details
• Flexible questionnaires and response scales with colour codes
• Users can be managed from MS Active Directory
• Keeps track of multiple users' answer to the same question
• Part of the Secure ISMS package

Increase and maintain an appropriate security awareness level in your organisation. The Secure ISMS Quiz module documents and improves the security awareness of your organisation. You do no longer need to spend time writing quizzes for testing policy knowledge, or reporting.

Security best practices as well as ISO 27001 and PCI DSS compliance mandates that your business practices regular security awareness training, and that your staff reads relevant policies and rules. Despite many great security technologies implemented in most businesses, having vigilant staff often turns out to be a very efficient protection toward today's advanced information security threats.

With Secure ISMS Quiz you can get a receipt every time an employee has read awareness material that you have made available to them. It saves you time by automatically gathering data on each employees performance on awareness quizzes so you get a better understanding of your organisations overall security awareness level.

Key Features

• Questionnaire pool of pre-built questions & answers on several topics
• End user awareness certificates generated on custom quiz pass threshold levels
• Email-reminders for awareness quizzes and and policy acknowledgements
• Reporting and spreadsheet result export
• Random question selection from pool
• Design the flow of your awareness programs
• Include your current security awareness training videos (.mov or .mp4)
• Automated inclusion of selected elements from your policies (with the Policy)
• Automated inclusion of selected elements from your Business Continuity Plans (with the BPC)
• Policy Agreement tool with an I-have-read-attestation (with the Policy module)
• Active Directory Users and Group Support
• Part of the Secure ISMS package

Spend less time on your compliance with ISO 27001, EU Data Protection Regulations, PCI DSS and other standards. Maintain your own policies with less work. Keep your contingency plans updated. Keep an eye on security tasks that have been assigned to colleagues or suppliers. Spend less time on preparing documentation for IT audits.

You can achieve all this better and more easily with the Workflow module in Secure ISMS. 

Key Features

• Task management provides better security
• Groups can be assigned tasks
• Users and groups can be managed in your Active Directory
• E-mail notifications
• Tasks can be linked to your information security policies
• Tasks can be linked to your contingency plan
• Tasks are integrated into your risk management
• Included in the Secure ISMS package