ISG has had a partnership with Rockwell Automation Asia Pacific for the last five years and provide support for the Risk Management & IT Security functions throughout the region. This has included participation of major application projects as well as conducting a range of technical infrastructure and application security functions across the countries in the region.
Set out below are some of the high lights of our involvement during the last five years:
· Provided technical leadership to make all countries within the Asia-Pacific region (Australia, New Zealand, India, Singapore, Hong Kong, PR China, Taiwan, Japan and South Korea) compliant with Sarbanes Oxley requirements. This process lasted over 18 months and included the creation and modification of frameworks, policies and procedures that drew on COBIT, ITIL and AS/NZS7799. Activities included technical and business consulting with elements of each country, from the Country Manager down to Business Manager level.
· Led the Technical and Security components for the Information Security project for Rockwell Automation Samsung in South Korea. This project involved the development of an Information Security Framework for a large e-Commerce project involving over 70 distributors of control and automation products. The solution was based on J2EE technologies including IBM WebSphere, WebMethods Enterprise Application Integration, and a range of supporting database technologies;
· Developed and implemented server hardening guidelines, managed the installation of servers, reviewed physical security, scanned the environment for vulnerabilities, and created procedures and policies for management of the environment.
· Designed the project for the architecture and implementation of BCP and DRP environments in the Asia Pacific region.