A Brief Overview of Our Products

 

For more extensive information click on the left hand menu options

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

 

IT Security Policy System

 

 

 

IT Policies presented to separate categories of users in a friendly, web based format readily installed on any intranet.  Fully customisable for any organisation which relies on electronic information for managing its day to day business activities. 

 

Fully cross referenced to ISO 27002, BS 25999, Sarbanes Oxley Section 404, Payment Card Industry Data Security Standard and SIGS (Security in the Government Sector) referenced to assist organisations meet the requirements of:-

  • IS18 Best Practice Guide, Queensland Australia

  • JAS-ANZ Certification Scheme, Australia

  • Sarbanes Oxley, USA

  • HIPAA - The Health Insurance Portability and Accountability Act, USA

  • GLBA - The Gramm, Leach, Bliley Act, USA

  • European Union Data Protection Directive, EU

  • UKAS Scheme, United Kingdom

 

More about the IT Policy System

 

Top

Network Security Audit

A comprehensive network audit that defines your current security status.  This report sets the benchmark for continued improvement in IT Security.  Those that subscribe to regular audits find their security improves and staff knowledge is enhanced.  The audit is carried out in three stages:-

  • With no authentication and no access rights

  • With general user access rights

  • With administrator access rights

This audit looks at all aspects of network security including:-

  • people management - registration, deregistration and access privileges

  • password management - password policies and management

  • information management - who has access to what information and where from

  • network devices - the configuration of switches, routers, firewalls and other primary equipment

  • external connectivity - who has access into the organisation and how this is set up

  • server management - patching, trusted relationships, configuration and general management

  • domain management - how domains are configured, access controls and high level privileges

  • remote access - how this is provided and authentication requirements

  • network configuration - whether the network structure has any security weaknesses

  • intrusion prevention - how port 80 security threats are handled

  • web content controls, spam management and anti virus controls

  • web2 controls

  • any site specific concerns

Top

 

Staff Education and Training Tools

 

IT Policies and Procedures are not much good if staff know nothing about them, have no idea of the role they need to play in keeping valuable corporate information safe, don't understand the implications of non-compliance and have no comprehension of the consequences of a major security breach.

 

"I didn't know"  is often used successfully in the Employment Court as a defence for alleged misconduct.  This situation can be easily avoided by following a few easy steps.

 

Discover the easy way to keep staff informed about their responsibilities with regard to using corporate computer systems and electronic information.

 

More about Staff Education and Training

Top

 

 

 

SecurITy Services

  

 

Information Systems security is a very specialist area and often staff don't have the expertise to handle a security incident or advise on best practice.  Security is often compromised for functionality to the detriment of the business.  Kaon SecurITy Ltd offer a packaged solution for businesses that are serious about IT security comprising a range of services designed to complement the technical experience of onsite IT staff.

 

Find out how to take advantage of our knowledge and experience and take a proactive approach to managing the computer systems on which your business depends.

 

 

More about our SecurITy service

Top

 

 

 

IT Policy Reviews

 

You are provided with the Policy Review document which shows where each of your policy statements is cross referenced to specific sections of the ISO 27002 standard.  You also receive the full Comparative Analysis which shows, in detail, what policy work is required in order to fully comply.  From this information you can decide whether you want to work on further policy development yourself, or Kaon SecurITy Ltd can develop the policies on your behalf.

 

 

More about IT Policy Reviews

Top

 

 

 

Environmental Management System

 

This system has been designed in accordance with the International Standards ISO 14001: 2004 and ISO 14004: 2004.  The EMS manual is fully cross referenced to these standards and a compliance page determines how the organisation meets its objective to attain best practice.  Where applicable, a reference to relevant sections of ISO 90001 has also been included.

 

The Kaon EMS has been designed for organisations that do not have a large overhead resource to invest in environmental management, but want an effective framework within which they can manage their environmental objectives.  The system allows an organisation to:-

  • identify the impact of their activities on the environment

  • set objectives for continual improvement

  • monitor and measure their performance against these targets

  • identify and deal with any non-conformances

  • develop procedures to handle an emergency situation

 

More about the Kaon Environmental Management System

Top

 

                                                     

© 2004 Kaon Security Ltd 20 Nov 2004