ISG Consulting provides services around Application Lifecycle Management, Information Security, and IT Service Management. ISO standards form the basis for much of our work. Our main services consist of we clarifying the application of and implemention of:
- ISO 27000 Information Security Management;
- ISO 20000 IT Service Management;
- ISO 9000 Quality Management.
ISG work closely with major certifiers enabling enterprises to rapidly achieve certification to the requirement of these standards. We plan, direct, and implement changes to organisation structures and business processes as part of the adoption of new requirements for certification.
Our consultants use ProMapp and ARIS Business Process Platform to describe current and future business processes to managing the transformation of organisations working towards certification. ISG Technology consultants often work with our consulting teams to build information technology solutions to support new processes.
Our work in Information Security leverage many of the OWASP methodolgies such as OWASP Top Ten and a range of other vulnerability and risk assessment methodologies. We use these methods to build better security into applications and infrastructures using the best practices we have researched in our consulting division. Our personnel work closely with the Macquarie University Security Research Lab as well as OWASP projects to help define emerging best practice in this challenging area.