Information Security Management System (ISMS)

ISMS

The aim of actively managing information security is to ensure that your information is effectively and appropriately protected against cyberattacks and other threats at all times. An information security management system (ISMS) makes it possible to deploy efforts and resources in a targeted manner and to check the results. The system itself is also continuously monitored and improved.

At first, a management system sounds like a complex and expensive set-up. In fact, the activities involved in setting up and operating an ISMS can be broken down into practical units that create measurable added value. An ISMS can optionally be set up and certified in accordance with the ISO/IEC 27001 standard.

Explore our ISMS model and feel free to contact our experts if you would like more information about ISMS.

Analyse

When Temet develops an ISMS, it is tailored to your organization; the ISMS is not an end in itself. This is why the organization, its environment and its business objectives are analyzed first. The effective and appropriate design of the ISMS can then be derived from this.

In this analysis phase, the appropriate design of the ISMS is determined. The aim is to understand the organizational context, regulatory requirements and company-wide risks in order to justify the scope, depth and objectives of the ISMS. The guidelines here are

the organization’s business and security strategy and governance

the internal and external stakeholders of your information security

the relevant legal and regulatory environment

an existing enterprise risk management system

prioritization of your processes and assets

the organization’s resources and skills

any existing findings from information security assessments, audits and incidents

Build

Your ISMS is designed and implemented based on the results of the analysis. Governance principles and guidelines as well as processes and responsibilities are defined, implemented in the organization and communicated.

Before the ISMS can be put into operation, all departments and individuals involved are informed about the system and its objectives, trained and supported. This step lays the foundation for anchoring your organization’s security culture.

Information security governance, including strategy, directives, guidelines and tools, is drawn up, published and communicated

The processes of the ISMS are developed, in particular inventory, risk management and improvement processes, and established with your tools

The security organization (incl. AKV) is determined and established

If necessary, the departments and persons concerned are trained and supported

Finally, transparency is created through communication and the ISMS is consolidated through ongoing awareness-raising

Run

In order to achieve the organization’s security objectives, the processes of the ISMS must be actively implemented. In particular, this includes the management process for information security risks, the result of which is transparency regarding the actual residual risks in the area of information security.

The functionality and effectiveness of the ISMS and the security measures adopted are continuously monitored, measured and evaluated. Based on this, the ISMS and the organization’s security culture are continuously improved.

Information security risk management

Monitoring, evaluation and periodic reporting

Internal audit and management review

Process for continuous improvement of the ISMS

Awareness and security culture

Certify

The certification phase serves to formally confirm the ISMS’s conformity with a standard by an independent body. It is optional, but provides transparency, trust and clear proof to customers, partners and supervisory authorities. The usual certification process is as follows:

Gap analysis (initial risk analysis)

Preparation by closing the gaps

Internal or external pre-audit

Certification audit

Ongoing maintenance audits and periodic recertification

Imprint

TEMET AG
Kanzleistrasse 4
8004 Zurich
Phone: +41 44 302 24 42
E-mail: info@temet.ch

UID: CHE-115.517.011

Copyrights

The copyright and all other rights to the content, images, photos or other files on the website belong exclusively to the operator of this website or the specifically named rights holders. The written consent of the copyright holder must be obtained in advance for the reproduction of any files.
Anyone who commits a copyright infringement without the consent of the respective copyright holder may be liable to prosecution and the copyright holder may be entitled to claim damages.

Disclaimer

All information on our website has been carefully checked. We make every effort to ensure that the information we provide is up-to-date, correct and complete. Nevertheless, the occurrence of errors cannot be completely ruled out, so that we cannot assume any liability for the completeness, correctness and topicality of the information, including journalistic and editorial information. Liability claims relating to material or immaterial damage caused by the use or non-use of the information provided or by the use of incorrect or incomplete information are fundamentally excluded.
The publisher may change or delete texts at its own discretion and without prior notice and is not obliged to update the content of this website. The use of or access to this website is at the visitor’s own risk. The publisher, its customers or partners are not responsible for any damages, such as direct, indirect, incidental or consequential damages, allegedly caused by visiting this website and consequently assume no liability for such damages.
The publisher also accepts no responsibility or liability for the content and availability of third-party websites that can be accessed via external links from this website. The operators of the linked sites are solely responsible for their content. The publisher therefore expressly distances itself from all third-party content that may be relevant under criminal or liability law or offend common decency.

Contact

If you have any questions or concerns about data protection, you can contact us at any time by e-mail or at our postal address.

TEMET AG
Kanzleistrasse 4
8001 Zurich
Switzerland
E-mail: info@temet.ch

General / Introduction

Based on Article 13 of the Swiss Federal Constitution and the data protection provisions of the Swiss Confederation (Federal Act on Data Protection FADP), every person is entitled to protection of their privacy and protection against misuse of their personal data. As the operator of this website, we take the protection of your personal data seriously. We treat your personal data confidentially and in accordance with the statutory data protection regulations and this privacy policy.
We store your data securely and take appropriate measures to protect your data from loss, access, misuse or alteration. Our contractual partners and employees who have access to your data are obliged to comply with data protection regulations.
For data transmission to our website, we use the TLS (Transport Layer Security) method in conjunction with the highest level of encryption supported by your browser.
This website can generally be visited without registering. Data such as pages accessed or names of files accessed, date and time are stored on the server for statistical purposes without this data being directly related to your person.

Server log files

We collect and store information that your browser automatically transmits to us in so-called server log files. These are

Browser type and browser version
Operating system used
Referrer URL
IP address of the accessing computer
Time of the server request

This data cannot be assigned to specific persons. This data is not merged with other data sources. We reserve the right to check this data retrospectively if we become aware of specific indications of unlawful use.

Cookies

We do not use any form of cookies or other tracking technologies for the operation of this website.

ISMS – Simple and Efficient

Your ISMS – Professionally Designed and Sustainably Managed

ISMS

Analyse

Build

Run

Certify

Your ISMS Partner

Bruno Blumenthal

What our experts say

Security Culture - Everywhere and yet it is Missing

Governance, Strategy and Culture: Focus Areas 2025

Keeping Pace: How to Integrate Security Requirements into Fast-Moving IT

Contact us

Page overview

ISMS – Simple and Efficient

Your ISMS – Professionally Designed and Sustainably Managed

ISMS

Analyse

Build

Run

Certify

Your ISMS Partner

Bruno Blumenthal

What our experts say

Security Culture - Everywhere and yet it is Missing

Governance, Strategy and Culture: Focus Areas 2025

Keeping Pace: How to Integrate Security Requirements into Fast-Moving IT

Contact us

Page overview

Rechtliches

Imprint

Copyrights

Disclaimer

Privacy Policy

Contact

General / Introduction

Server log files

Cookies