Your Business Issues Solved by our Specialist Consultants Online
Hi! We are young programmers from Poland. We are creating a new portal to perform automated compliance audit with the ISO/IEC 27001 (information security standard).
The assumptions are very simple. User will answer questions about the activities of the firm. Then the system will suggest corrective action.
Innovative e-service is possible through the use of modern expert systems and modules based on artificial intelligence. Audit will also use innovative knowledge bases.
What do you think about this concept? Maybe you have some interesting ideas to help develop this service?
I really think this is a great idea. You could obviously start with a well known standard such as ISO27001 and extend the system when it is established to cover off other ISO industry standards. in terms of the specifics of ISO27001 I am actually an expert in this area and provide several clients here in London with advisory services to align their information security to this standard.
Given your target market is the auditing of the ISO27001 controls in place, you may slightly struggle in the fact that typically consultancies and other advisors get involved with companies in the early stages and help them through the ISO alignment or certification route which includes carrying out a pre-certification audit (Stage 0 audit) manually through the use of tools and then they would communicate the results to their clients. If we are automating the entire process of auditing into a system based on Artifical intelligence - my first question would be what type of information comes out from the system. Based on this I'm sure we can give you a better view of the concept.