RSM Colombia


ISSP – Information Security Strategic Plan



Information security goes beyond technology and its management processes, since it deals both with information technology and with information in its different expressions. Information security comprises human, , environmental factors and those of the context which are not initially explicit in an Information Technology Strategic Plan (ITSP), but shall be viewed through a lens of risk management and organizational culture.

The Information Security Strategic Plan (ISSP) supplements the ITSP, by defining a set of steps and stages which build up security services in each technological layer, consistent with the corporate needs and risks identified. Thus, security becomes a facilitator of services instead of a limitation to the same.  

An ISSP determines:

  1. Vulnerabilities, threats and risks are identified for each technological layer.
  2. A set of vectors for security services which enable minimizing risks to acceptable levels on each stage of the technological set up.  .
  3. A human organization required for each maturity level in the management of information risk.
  4. The management processes required.
  5. The budget required for each stage.

RSM consulting services on strategies for Information Security will help you build up security services in accordance to your risks, capacities, budgets and organizational maturity levels.


How can we help you?

Oficina central de BOGOTA DC
Aseguramiento financiero y consultoría:
Tel: +57 (1) 410 4122
Tel: +57 (1) 794 1791
Avenida Calle 26 No. 69D - 91
Oficinas 303 | 305 307
Centro Empresarial Arrecife
North Office
Tax & Legal:
Tel: +57 (1) 703 4060
Carrera 16 No. 93a - 36
Office 204
Business Center 93 Building
Torre Peatonal 2

Tel: +57 (7) 657 7704
+57 310 609 8108
Carrera 27 No. 36 - 14
Oficina 325
Edificio Suramericana

Tel: +57 (2) 660 8900
+57 (2) 667 6105
Calle 19N No. 2N – 29
Office 3401-B
La Torre de Cali Building

Tel: +57 (4) 266 6474
Calle 16 No. 41 – 210
Office 901
La Compañía Building