info@3DAssurance.com
|

3DAssurance Management Consulting - Assurance beyond compliance

Security Management Systems

Why?

Security Management Systems, SeMS

Security risks are business risks. Good security is a critical success factor for long-term company survival. 

Directors have duties of care to the public, staff and shareholders: security failures could affect any or all of those catastrophically. 

But compliance with security regulations is not enough, and directors should establish assurance systems to manage the security risks. 

What?

  A SeMS is an organised, systematic approach to managing security which embeds security management into the day to day activities of an organisation.

It provides the necessary organisational structure, accountabilities, policies and procedures to ensure effective oversight.

In summary, a SeMS is an assurance system for security

How?

Developing the SeMS is an evolutionary activity executed at the pace the organisation can sustain.

Key steps:

  • A gap analysis and action plan for your SeMS
  • Determine and prioritise target functions
  • Define and get approval for project objectives and scope based on the action plan 
  • Do it!


When?

More time is lost through delays at the start of a project than at any other time. We recommend an easy, early start with a Gap Analysis:

  • A short workshop to give you the foundation knowledge and explain the methodology
  • A Gap Analysis Report and outline Action Plan for your SeMS

The action plan will enable you to decide how best to proceed. We recommend an evolutionary approach based on capability maturity principles.

Who?

Typically the project team will not be a dedicated resource, but will be members of the security team alongside their normal duties. 

This need not be onerous since the project can be self-paced and the SeMS becomes the improved way they carry out their normal duties.

Stakeholders and staff right across the organisation must be involved by providing engaging communication throughout the project.

Dispelling the myths

A SeMS is NOT:

  • complicated
  • a set of documents you put on a shelf
  • a major cost
  • a silver bullet, or magical solution
  • an IT system
  • a one size fits all solution
  • an additional burden
  • a rigid process
  • a replacement for compliance

Find out More about SeMS

Drop us a line!

Better yet, ask to see us in person!

Free, no obligation, initial discussions face to face or by webinar

3DAssurance

Your SeMS partner

+44 (0) 7944 257571 / +44 (0) 7810 880230

Global reach

Clients in Americas, EMEA and AsiaPac