Tailoring and implementing an ISMS throughout the organisation, is an essential activity to place cyber security at the very heart of the business and better protect key assets from an evolving threat landscape.

KPMG can undertake the responsibility of:

  • Documenting and assessing the current state of information security across the organisation.
  • Defining and establishing security governance across the organisation by which ownership and direction could be taken and given.
  • Defining and establishing information security risk practices for assessing and managing threats and vulnerabilities to information assets.
  • Defining and establishing assurance practices and an ongoing awareness campaign.
  • Creating and implementing a tailored ISMS for the client.

As a stakeholder within this process our approach ensures:

An end-to-end delivery of the capability during all stages of the engagement where KPMG can leverage extensive experience in similar engagements to speed the creation, adoption and integration of an ISMS in a large, complex organisation.