Balancing governance & innovation
George Miguel, Director
6.Three develops & delivers ISO 27001 ISMS solutions for organisations on the leading edge of technology.
When you’re working beyond the edge of established rules and regulations, you need InfoSec expertise that’s also innovative and understands delivery from the ground-up.
Our team provides more than a bunch of cut-and-paste policy templates and vague instructions. We have hands-on experience with software development, programme delivery, enterprise transformation, and hyperscale platforming.
Our ISMS solutions make sense because we’re technology experts, too.
What’s in a name?
The latest (2022) revision to the ISO 27001 security standard has a fun new addition:
6.3 Planning of changes
When the organization determines the need for changes to the information security management system, the changes shall be carried out in a planned manner.
Like many governance rules, it provides little in the way of guidance. Up until now, information security has been a gate-keeping process in large enterprises. Startups and modern organisations recognise that change is constant. How can information security keep up? How can you, as a leader, plan?
We got our start solving exactly these problems.
You need an information security management system that can withstand the scrutiny of auditors and regulators. Getting bogged down with endless planning can make or break your business. Finding the right balance requires a rare combination of skills.