During 2009 and 2010 ISG were engaged by State Transit to design and implement a new Information Security Management System design based on the requirements of ISO 27001, ITIL and COBIT.
The system developed incorporated the IT Governance maturity model for COBIT and the core elements of the ISO27001 ISMS processes. The processes were specified using the Configuration Management and Change Management processes definition within ITIL.
The final security solution was published as a four-part series by the Information Systems Audit and Control Association (ISACA) in Cobit Focus.
A summary can be found at http://www.isaca.org/COBIT/focus/Pages/leveraging-cobit-to-implement-information-security-part-4.aspx.
ISG’s Enterprise Solutions division has been working with Serena Software, the world’s largest independent supplier of technology governance products, to build platform solutions to make available solutions which enable their consulting designs.