Certified Information Security

Certified Information Security (CIS) is a leading provider of corporate governance advisory services and training, specializing in strategy, policy, and certification services. Since 1999, CIS has been assisting mid and large enterprises in strategy and business system development, deployment, and auditing for enterprise risk management, business continuity management, information security management, fraud control management, and purchasing & supply chain management. CIS supports its clients through various means, including establishing necessary strategy, management leadership, policies, and protocols to support organizational certification for ISO 31000 Enterprise Risk Management, ISO 22301 Business Continuity Management, ISO 27001 Information Security Management, NIST Cybersecurity Framework, and ISO 37301 Compliance Management. They also focus on developing critical group executive competence, successful kick-off and deployment of new ERM, BCM, information security, and fraud control management systems, establishing defined risk context, criteria, and scoping necessary for operational risk assessments and business impact assessments, developing a formal risk assessment and risk treatment methodology, and facilitating various types of assessments including operational risk, information security, cybersecurity, fraud, and business continuity planning. CIS's services cater to organizations seeking certification and comprehensive risk management solutions. Although no specific investment details are available at present, CIS continues to serve its clients through its expertise in cybersecurity and corporate governance. With its extensive experience and specialization in the field, CIS stands as a key player in enhancing organizational governance and risk management structures.