Information Security Management System (APK Infosis)

Information Security Management System (APK Infosis)

Information Security Management System (APK Infosis)

Amn Pardazan Kavir company has designed and produced APK Infosis based on ISO/IEC 27001:2013 (information security essentials) and ISO/IEC 27005:2011 (risk management essentials) standards in order to empower the public and private organizations to design, implement and maintain the full circle of information security management system. The purposes of APK Infosis production are as follows:

  • Conformity assessment of organizational functions and procedures with information security standards
  • Risk analysis and management
  • Organizing and applying the plans, instructions, and executive methods
  •  Helping to fix the vulnerabilities and eliminate the threats and attack impacts

Information Security Management System (APK Infosis)

Information Security Management System (APK Infosis)

General features of the software support the specialized options and modules of APK Infosis which help the organization in implementing and establishing the information security management system satisfactorily.

  • Providing web-based software
  • Supporting workflow
  • Supporting multiple users
  •  Authentication system and role-based access control
  •  Recording all the user activity events using logging system module
  •  Electronic dashboard
  •  Mechanizing the system establishment process considering forms, lists, controls, and running processes
  •  Supporting the mechanisms of determining and controlling the user access levels
  •  Generating various and custom reports such as SOA
  •  Having an information bank based on defined standards and previous experiences about vulnerabilities and threats
  •  Capability of defining different standards and related controls

Along with the general features mentioned, APK Infosis system includes some specialized options which are mapped onto the required activities to implement and establish the information security management system (ISMS). These options are:

  •  Management of executive methods
  • Asset management
  •  Document control
  •  Event support
  •  Monitoring and measurement of indicators
  •  Internal audit
  •  Management review
  •  Security audit
  •  Reformative and preventive actions
  •  Antivirus
  •  Providing backup copies