Healthcare ISO Compliance made easy!

InfoSaaS Assure is the solution to gaining your ISO 27001 certification. Assure is an easy and cost effective IT risk management solution that helps organisations become and stay ISO 27001 certified.

Achieving an accredited certificate to ISO 27001 demonstrates your ability to provide the highest level of information security. This therefore benefits both your staff and patients.

Trust is key, especially for care providers. Through a quality management system, you can become a trusted healthcare organisation which has achieved iso compliancy.

  • Created for all levels of competency. You will receive manageable, practical and intuitive workflows.
  • Suited to suit a range of organisation sizes, from start-up to enterprise.
  • Decreases administrative overheads for your information security management processes.
  • Engages the relevant staff & patients in your practice; with minimal training required.
  • Allows you to view and understand your business’s risk level in real time.
Circle Diagram

Ultimate peace of mind with the Assure management dashboard.

Utilise the easy, hassle-free and effective IT risk reporting and management of Assure. You can now stay in-tune with at-a-glance statuses. Available for your customisation, InfoSaaS now functions with self-defined risk thresholds, escalate or re-assign ISMS tasks. It can even manage individual asset information and user functions. It’s great for a range of services and is adaptable for any industry.

Everything you need is conveniently in one place. Available to access securely anywhere in world, ISO 27001 compliance has never been easier in the healthcare sector!

 


First choice for effective IT risk management in healthcare

document

Risk Assessment Templates

Utilise a library of prepared risk assessment templates with threats and suggested controls.

lab

Risk Treatment Activities

Progress risk treatment activities that analyse unacceptable risks within assessments.

cogs

Auto Populate SoA

Automatic population of the Statement of Applicability. This records which controls have been added.

eye

Integrated Risk Register

The Integrated Risk Register provides clear visuals of all levels of risk throughout the organisation.

cloud

Cloud Based Threat Data

Inline with standard ISO27018, Assure covers cloud-based data vulnerabilities, threats and applicable controls.

You won’t be able to live without InfoSaaS Assure once you’ve used it!

Providing a range of cutting edge features, tools and information, InfoSaaS Assure helps you to easily administer your ISMS compliance and ISO 27001 certification across your health and social care practice.

Assure is being embraced in a range of industries which store sensitive data. Why? Because Assure helps you to avoid financial loss due to data breaches, allows employees & patients to rest easy with greater data security, and protects & enhances your reputation!

From policies and procedures to any medical devices you use, make sure you’re secure with Assure!

dashboard
DASHBOARD
cogs
SYSTEM PARAMETERS
temple
ASSET MANAGEMENT
arrows
ASSET DEPENDENCIES
risk
RISK ASSESSMENTS
tick
SoA
security
SECURITY INCIDENTS
Calendar
ISMS CALENDAR
box
DOCUMENT MANAGEMENT

DASHBOARD

InfoSaaS Dashboard

The InfoSaaS dashboard offers you at-a-glance management information covering the status and performance of your information security management system. By combining metrics about assets, risk assessments, security incidents and documentation status, it provides you with an overview of your organisation’s information security health and quality.

SYSTEM PARAMETERS

Critical asset type

InfoSaaS is configurable to suit you. If your organisation has specific information security needs, it is adaptable to fit. You’ll have a number of user-defined system parameters, including acceptable risk metrics, default review periods for asset risk assessments & documentations, options for recording supporting evidence against security controls and workflow management to authorise security-related documentation.

ASSET MANAGEMENT

Manage Assets InfoSaaS

Using one of the generic templates within InfoSaaS, assets can be created & assessed. The Asset Dashboard is searchable, which means that you can easily see the status of your assets. You’ll see their type, ownership and the date of the last risk assessment.

ASSET DEPENDENCIES

Birmingham Data Centre 1 and 2

InfoSaaS methodology knows that assets could rely on other assets for overall security: users are encouraged to identify and record “parent” and “child” relationships. These will be presented in the asset dependencies chart. It’ll also provide a useful messaging service advising upstream and downstream asset owners of notifications, such as expired risk assessments and security incidents.

RISK ASSESSMENTS

Business Server InfoSaaS

Every asset requires a detailed risk assessment. The asset owner must determine the probability of a range of vulnerabilities from applicable threats, and assess the probable impact on the asset if they were exploited. The asset owner will then progress to select and record the security controls to support their assessments. InfoSaaS will then calculate whether the risks are acceptable to the specific organisation.

SoA

Supplier Relationships Addressing Security with agreements

The ISO 27001 information security standard requires that the choice and use of security controls to protect assets is recorded in a “Statement of Applicability”. The process used to be enormously time consuming as it was a manual activity. InfoSaaS though eliminates this. It has been designed to prepare and update this key document automatically when an individual risk assessment has been completed.

 

SECURITY INCIDENTS

InfoSaaS slider

In the case that an asset in InfoSaaS has been breached or there’s a potential security risk, the threat must be reported quickly so the responsible asset owner(s) can investigate and act accordingly. InfoSaaS has an integrated security incident module which manages and tracks progress of security incidents. It offer the entire process from initial reporting through to remedial actions.

ISMS CALENDAR

ISMS Calendar

The InfoSaaS calendar keeps track of upcoming and completed risk assessments. Many security activities are time dependant when it comes to information security management, and InfoSaaS will help you stick to timings, reporting and management. Although great with dates and timings, you can also add your own “ISMS Events”. These can include security training sessions, internal and external audit activities, management reviews and more.

DOCUMENT MANAGEMENT

Slider 9

InfoSaaS incorporates a document management module. This means organisations can upload and manage their documentation or include hyperlinks to their documentation if hosted elsewhere. The system allows for various documentation approval workflows. Along with this, it is all integrated with the InfoSaaS calendar, allowing planning and documentation for the future.

Pricing

Basic

Single user licence
No up front costs
No minimum contract
Cloud based access
Basic support

£50 / Month
£550 / Year
Try it now
Simple

Up to 5 users
No up front costs
No minimum contract
Cloud based access
Basic support (3 year contract includes document pack)

£200 / Month
£2,200 / Year
Try it now
Advanced

Up to 15 users
No up front costs
No minimum contract
Cloud based access
Premium support (Annual licence includes document pack)

£500 / Month
£5,500 / Year
Try it now
Professional

Up to 30 users
No up front costs
No minimum contract
Premium support (UtopiaR bundled into the document pack)

£1,000 / Month
£11,000 / Year
Try it now
Enterprise

Up to 100 users
No up front costs
No minimum contract
Premium support (UtopiaR bundled into the document pack)

Contact Us
Contact Us
Try it now

Let's talk about how InfoSaaS Assure can help you effectively manage the risks that your information assets face

Find out more