■Services for the Establishment of Information Security Management Plan and the Implementation by Management

• – Establishing plans for information security governance improvement
• – Planning implementation of information security management

■Support Services for Implementation of Information Security Management Measures

• – Introducing security management frameworks
• – Designing and improving information security systems such as SOC (Security Operation Center)
• – Designing log monitoring systems and implementing security information intelligence
• – Designing SIEM (Security Information and Event Management) systems
• – Developing SOC/CSIRT (Computer Security Incident Response Team) structures
• – Selecting and dealing with manufacturers and vendors
• – Evaluating and selecting outsourcing services
• – Implementing cloud service security measures
• – Establishing and responding to RFI and RFP
• – Conducting vulnerability diagnosis and security assessment

■Security Monitoring Services

• – Surveying actual conditions of information security management measures and evaluating their effectiveness
• – Surveying the current security trends and new technologies and analyzing the possibility of their application

■Security Evaluation and Analysis Services

• – Evaluating achievement levels of information security goals and objectives
• – Analyzing gaps between security targets and achievement levels
• – Identifying the issues of information security measures and establishing policies to resolve them

■Support Services for Management Service Planning and Development

• – Planning/development/improvement of security management services
• – Planning/development/ improvement of monitoring operation services