Issues

Now we are well and truly into the 'information age', there is a growing realisation of the importance of information and the need to manage it properly. Information issues are now high on the compliance and risk management agenda.

Information security is all about securing an organisation's information-related assets - software, hardware, databases etc. to ensure their continued availability to authorised users, and to deny access to those unauthorised. To date, ISO 17799 has been the most widely recognised information security standard. It describes components of an ISMS (Information Security Management System), including; policy, access control, physical and environmental security, continuity planning, and asset classification / control.

It is generally recognised that information is most likely to be secure if there is a formal system in place - with defined roles, responsibilities, policies and procedures. Released in late 2005, ISO 27001 defines the requirements for a certifiable ISMS in much the same way as ISO 9001 does for a QMS (quality), and ISO 14001 does for an EMS (environment).

Almost the reverse side of the coin is Freedom of information - which generally requires organisations to respond to requests for information, and communicate that information when appropriate to do so. In many countries, the 'right to know' is enshrined in law, and applicable organisations simply must comply with it. For example, in the UK there is the Freedom of Information Act 2000. A recent article in Community Care magazine suggests that 100,000 UK organizations need to comply with this act.

Managing information requires effective systems in place to:

  • Communicate policies and procedures
  • Log requests or exceptions
  • Assess risks
  • Plan, record and track actions
  • Audit performance / conformance
  • ...and so on

Solutions

The Qudos System 3 software applications can help you manage information issues better and put a coherent framework in place:

  • Documents
    Helping you to effectively and efficiently distribute and control important documents such as policies and procedures
  • HR
    Schedule and maintain records of employee training
  • Audits
    Schedule and record security, desktop, or compliance audits
  • Risk
    Assess security threats and the risks they pose
  • Actions
    Plan / monitor control measures, log actual or potential problems or exceptions to established business rules, plan preventive / corrective actions, and then assign, record and track those actions

Qudos System 3 is a genuine enterprise solution - offering even more functionality and content, with the option for multi-site application using a powerful SQL server database engine and browser interface with advanced Microsoft .net technology. More...

One great benefit of Qudos System 3 is the efficient and effective management of Information Security in addition to other compliance issues such as Environment, OHS, and Quality in one integrated application.

Contact us now for more information.

Other compliance issues...

Solutions for compliance & risk management: OHSAS 18001 / AS/NZS 4801 OHS Occupational Health & Safety) • ISO 14001 Environment • ISO 9001 Quality Assurance / Quality Management / Six Sigma • AS/NZS 4360 Risk Management • ISO 22000 / HACCP Food Safety • Industry Accreditation • Freedom of Information • Corporate Governance • ISO 17799 / ISO 27001 Information Security • Loss Prevention

Privacy | Terms and Conditions