With the increased focus on information security over the past couple of years it has become more important for organizations large or small to seek outside validation of their efforts to protect information. Sarbanes-Oxley in the US, PIPEDA in Canada and other legislation worldwide is putting a greater obligation onto management to maintain security and privacy. ESTec can assist organizations in understanding their responsibilities under legislation and implementing policies and procedures that protect management and the board from information security liability. One way to mitigate the risk of lawsuit is ISO 17799 or BS 7799 Information Security Management Systems. Implementing an ISMS is one way to implement the controls required under SOX, PIPEDA, HIPPA and other regulations. Talk to our consultants about implementing an ISMS.