ISO 27001 Certification is easier with our Information Security Management System, Assure.

InfoSaaS Assure is a simple and cost effective Information Security Management System (ISMS) & IT risk management solution.

Assure is currently helping organisations across the world to become and remain ISO 27001 certified. It’s one of the leading ISO 27001 Compliance Softwares on the market. It was developed to operate in a host of organisations and a range of industries.

  • Simple, practical and intuitive workflows.
  • Ideal for organisations of any size.
  • Decreases administrative overhead of your information security management.
  • Automatically engages all of the relevant staff in your business.
  • Minimal training required for use.
  • Allows you to understand your business’s risk level in real time.
Circle Diagram

Offering you peace of mind with our management dashboard.

Everything you need is conveniently located in one place with Assure. You can even access it securely anywhere in the world (so long as there’s an internet connection!)

Keep updated with at-a-glance statuses and customise how InfoSaaS functions with self-defined risk thresholds, escalate or re-assign ISMS tasks and manage individual asset information & user functions.

Assure is adaptable and can function within any business or industry!


Why Assure is the number one IT risk management solution:

document

Risk Assessment Templates

You’ll receive a library of prepared risk assessment templates with common threats and suggested controls.

lab

Risk Treatment Activities

Regular progress risk treatment activities for unacceptable risks identified within Assure’s assessments.

cogs

Auto Populate SoA

Automatic population of the Statement of Applicability to record which controls have been implemented.

eye

Integrated Risk Register

Assure’s Integrated Risk Register provides visibility of all levels of risk throughout the organisation.

cloud

Cloud Based Threat Data

Cloud-based data vulnerabilities, threats and applicable controls – aligning with supplementary standard ISO 27018.

Once you’ve tried it, you won’t be able to live without it!

With a range of cutting edge features, tools and information, InfoSaaS Assure will help you effortlessly administer your ISMS compliance and ISO 27001 certification across your business.

dashboard
DASHBOARD
cogs
SYSTEM PARAMETERS
temple
ASSET MANAGEMENT
arrows
ASSET DEPENDENCIES
risk
RISK ASSESSMENTS
tick
SoA
security
SECURITY INCIDENTS
Calendar
ISMS CALENDAR
box
DOCUMENT MANAGEMENT

DASHBOARD

InfoSaaS Dashboard

The InfoSaaS dashboard provides at a glance, key management information about the status and performance of the information security management system. It achieves this by combining important metrics about assets, risk assessments, security incidents and documentation status to provide system-wide visibility of an organisation’s information security health.

SYSTEM PARAMETERS

Critical asset type

InfoSaaS is fully configurable so that it operates in accordance with an organisation’s specific information security needs. Amongst a number of user-defined system parameters are a range of acceptable risk metrics, default review periods for asset risk assessments and documentation, options for recording supporting evidence against security controls and workflow management for authorising security-related documentation.

ASSET MANAGEMENT

Manage Assets InfoSaaS

Assets can be created (and subsequently assessed) using one of the generic templates provided within InfoSaaS, or using a customised asset template created by the user. The status of assets, including their type, ownership and the date of their last risk assessment can be clearly seen from the searchable Asset Dashboard.

ASSET DEPENDENCIES

Birmingham Data Centre 1 and 2

The InfoSaaS methodology recognises that assets may rely upon other assets for their overall security: InfoSaaS users are encouraged to identify and record “parent” and “child” relationships. These can be seen within the asset dependencies chart, and provides a useful and timely messaging service advising upstream and downstream asset owners of notifications of expired risk assessments, security incidents etc.

RISK ASSESSMENTS

Business Server InfoSaaS

Each asset is subject to a detailed risk assessment. This requires the asset owner to determine the probability of a range of vulnerabilities being exploited by applicable threats, and assesses the likely impact on the asset if they were actually exploited. They then progress to select and record the security controls which are in place to support their assessments, after which InfoSaaS calculates whether the risks are acceptable to the organisation.

SoA

Supplier Relationships Addressing Security with agreements

The ISO27001 information security standard requires that the selection and use of security controls to protect assets is recorded in a “Statement of Applicability”. Traditionally this is an extensive and time consuming manual activity, InfoSaaS has been designed to prepare and update this key document automatically each time an individual risk assessment is completed.

SECURITY INCIDENTS

InfoSaaS slider

Should an asset within InfoSaaS be identified as having been compromised in some way, or even a potential breach is suspected, it is important that this is recorded promptly, so that the appropriate asset owner(s) can investigate and take remedial action without delay, InfoSaaS includes an integrated security incident module which manages and tracks the progress of security incidents from initial reporting, through investigation and remedial actions to final closure.

ISMS CALENDAR

ISMS Calendar

Many activities within an information security management system are time dependent, so the InfoSaaS calendar keeps track of forthcoming and completed risk assessment activities, security incidents and document management tasks. Additionally, users can add their own “ISMS Events” which may include security training sessions, internal and external audit activities, management reviews etc, so that important activities are never overlooked.

DOCUMENT MANAGEMENT

Slider 9

InfoSaaS incorporates a document management module, which allows organisations to upload and manage their own documentation, or alternatively record hyperlinks to their documentation if hosted elsewhere. The system allows for various documentation approval workflows, and integration with the InfoSaaS calendar means that future document reviews are visible well in advance of the required review date.

Pricing

Basic

Single user licence
No up front costs
No minimum contract
Cloud based access
Basic support

£50 / Month
£550 / Year
Try it now
Simple

Up to 5 users
No up front costs
No minimum contract
Cloud based access
Basic support (3 year contract includes document pack)

£200 / Month
£2,200 / Year
Try it now
Advanced

Up to 15 users
No up front costs
No minimum contract
Cloud based access
Premium support (Annual licence includes document pack)

£500 / Month
£5,500 / Year
Try it now
Professional

Up to 30 users
No up front costs
No minimum contract
Premium support (UtopiaR bundled into the document pack)

£1,000 / Month
£11,000 / Year
Try it now
Enterprise

Up to 100 users
No up front costs
No minimum contract
Premium support (UtopiaR bundled into the document pack)

Contact Us
Contact Us
Try it now

Let's discuss how InfoSaaS Assure will help you to manage the risks that your information assets face

Find out more