Company| Course Calendar| Services| News| Security Alerts| Enrollment| Contact Us

News

 

Another First in China and First in Macau
Congratulations! CTM got ISO 9001 & ISO 27001 certified!
updated: 30 Sep 2011
Companhia de Telecomunicacoes de Macau S.A.R.L. (CTM) becomes the FIRST telecommunications services provider in the Greater China region that obtained ISO 9001, ISO 20000 and ISO 27001 certification and accreditaton for its fixed telephony, mobile, and Internet services. The company got an ISO 27001 certificate for the IT Department in 2006.

To further strengthen its control over service quality and customer information protection, Network Services Department of CTM engaged i-TotalSecurity to provide consultancy service in establishing, implementating, monitoring, and improving its quality management system and information security management system.

In a 6-month period, we enhanced the policies and procedures, finetuned the processes and workflows for service development, network development, transport network management, infrastructure administration, and daily network operations, and hardened the network equipments, computer servers and applications.

On February 2010 and September 2011, the ISO 9001 quality management system, ISO 27001 information security management system, and ISO 20000 IT service management system are certified by BSI Management Systems and no non-conformity was reported.

Congratulation! HM Information Services Limited
Got ISO 20000 Certified
updated: 02 Nov 2009
ISO 20000 certification is not only for large or medium size organization. With good leadership and effective guidance, a small size IT service provider can also get certified easily.

HM Information Services Ltd (HMIS) provides web hosting, software development and maintenance, and infrastructure support services to both internal and external customers. To further standardize its work processes and satisfy the customer requirements, HMIS needs to establish an IT service management system and obtain an ISO 20000 certification.

To ensure a smooth implementation and certification process, HMIS selected i-TotalSecurity as the consultant to build the IT service management system, establish all the necessary documents, help develop an integrated incident / problem / configuration management system, and deliver an awareness training.

Within a 6-month period, all necessary records, service management processes and system components were completed and ready. On October and November 2009, the company had passed the certification audits conducted by SGS auditor, and became the 11th ISO 20000 certified organization in Hong Kong.

Congratulation! New World Telecommunications Limited
Got ISO 20000 and ISO 27001 Certified
updated: 23 Oct 2009
Established in 1995, New World Telecommunications Limited (NWT) is a pioneering telecom service provider and Internet Data Centre operator. On 23 September 2009, NWT Internet Data Centre has been selected as "The Best Internet Data Centre" in Hong Kong.

To increase its competitiveness and fulfilling the customer requirements, NWT decided to establish an ISO 20000 and ISO 27001 complaint IT service and security management system covering its Kwai Chung Data Centre, Kowloon Bay and Chai Wan offices.

On March 2009, NWT engaged i-TotalSecurity to provide implementation and certification consultancy. With proven and successful experiences, we were able to conduct the gap analysis, prepare a service and security improvement plan for actions by relevant NWT staff, and establish all the management system documentation within 1 month's time.

On September and October 2009, NWT's integrated management system had successfully passed the certification audit conducted by HKQAA auditors. It is now the 10th ISO 20000 certified organization in Hong Kong.

Congratulation! Standard Life (Asia) Limited
Got ISO 27001 Certified
updated: 17 Jun 2009
On 17 June 2009, Standard Life (Asia) Ltd (SLA) announced that the company is the first insurer in Hong Kong that has successfully acquired the internationally recognized BSI ISO 27001 Information Security Management System (ISMS) Certification for the entire functions of the company.

This vivid testimony for the Company can be traced back to late August 2008, when SLA engaged i-TotalSecurity Consulting Limited to provide ISMS implementation and ISO 27001 certification consultancy services. Based on our expertise in protecting customer information in insurance companies and a approach to security, we implemented an ISMS in the Company covering all 133 managerial and technical security controls, align the local security documentation with the Company's global requirements, further hardening the security configuration on its hetergenous computing environment, and initiating behaviour changes among all business and technical staff.

On March and April 2009, SLA has been operated for over 3 months and passed the rigorous inspections conducted by BSI Management Systems.

Congratulation! LINA Life Insurance Company of Korea
Got ISO 27001 Certified
updated: 11 Jun 2009
LINA is one of the biggest life insurnace company in Republic of Korea with its main operation centres in the city of Seoul and Dae Gu. To demonstrate its committment to customer information protection, LINA decided to obtain an ISO 27001 certification on its customer servicing, telemarketing and IT service delivery & support processes.

In establishing and implementing an information security management system covering its 1,800+ staff in 2 major cities, the Company engaged i-TotalSecurity Consulting Limited and use our proven ISO 27001 consultancy services.

While most of the ISO 27001 certificates cover only the IT functions or Data Centre operations, we built a geninue end-to-end protection of customer information in LINA's business and IT processes with a 2-month period.

On March and April 2009, LINA's ISMS has successfully passed the certification audits by BSI Management System in Korea. On 11 June 2009, the ISO 27001 certificate has been delivered during the certificate presentation ceremony.

Congratulation! Hongkong International Terminals
Got ISO 27001 Certified
updated: 21 Apr 2009
On 21-April-2009, Hongkong International Terminals (HIT) becomes the FIRST container terminal operator in Hong Kong to obtain the ISO 27001:2005 accreditation. Operates in Terminals 4, 6, 7 and 9, HIT deploys creative and sophisticated information technology and accounts for about 50% of the container port traffic of Hong Kong.

In building its information security management system, HIT selected and engaged i-TotalSecurity as the security consultant to ensure a smooth implementation and certification process. In a 6-month period, we have established the information security governance framework, prepared the essential security documentation, and initiated the necessary security processes in HIT's data centre facility management, computer operation, service desk management, IT infrastructure support, system change management, disaster-recovery service and storage services.

On early February and mid-March 2009, HIT's information security management system has passed the certification audits by BSI Management System without any non-conformance.

Wow! CIGNA International Marketing (Thailand) Limited and CIGNA Insurance Public Company Limited Got ISO 27001 Certified
updated: 15 Feb 2009
To further demonstrate CIGNA's commitment on customer information protection to the public and business partners, the international giant on life, accident & supplemental health insurance initiated ISO 27001 implementation projects throughout its Asia Pacific operations, and engaged i-TotalSecurity Consulting Limited to build the information security management systems and get them certfiied.

Ride on previous successful experiences and 5 months of intensive efforts, an ISMS has been successfully implemented and operating in both CIGNA International Marketing (Thailand) Limited and CIGNA Insurance Public Company Limited in Bangkok. On 19 December 2008, the ISMS has passed the 2-phase ISO 27001 certification audits conducted by the BSI Management Systems without any non-conformance.

On February 2009, these companies obtained the ISO 27001 accreditation and are the FIRST insurance companies in Thailand to obtain this prestige information security certification covering both their business and IT processes.

Congratulation! Jardine OneSolution (HK) Limited
Got ISO 20000 and ISO 27001 Certified
updated: 30 Jul 2010
Jardine OneSolution (JOS) is the leading provider of integrated IT solutions in Asia with 50-years of successful track records, and is an ISO 9001 certified company. As a pillar of JOS technologies management and sustainment solution, the Managed Service section wishes establish an IT service management system and demonstrate its commitment to world-class service quality.

Among several leading consultants, i-TotalSecurity Consulting Limited has been selected to take up this mission critical project. On 2009 and 2010, we have set up an ISO 20000 compliant IT service management system (ITSMS) and an ISO 27001 compliant information security management system (ISMS) that integrates with the existing ISO 9001 quality management system, developed all policies, procedures, and processes, as well as instituted behavior changes in the service desk, data centres and infrastructure support teams.

On 05 December 2008, the ITSMS was successfully certified by BSI Management Systems. On 12 December 2008, the company also passed the ISO 9001 certification audits for extending the scope to cover the whole Managed Service team. On mid-January 2009, JOS obtained the ISO 20000 certificate issued by UKAS and BSI. On mid-September 2010, JOS also obtained the ISO 27001 certifificate issued by ANAB and BSI.

Congratulation! NTT Com Asia Limited
Got ISO 27001 Certified
updated: 19 Jan 2009
NTT Com Asia Limited (NTT CA) is a subsidiary of Nippon Telegraph and Telephone Corporation. The company provides full range of ICT Solutions in Hong Kong since 1999 and operates a state-of-the-art data centre in Tai Po

On April 2008, NTT CA engaged i-TotalSecurity Consulting Limited to establish an ISO 27001 compliant information security management system (ISMS) to further impress its customers on information security practices. With our proven process and methodology, a continuous improving ISMS, covering its basic and valued added data centre services, has been successfully established within 6 months.

On 13-Nov-2008, the ISMS was certified by BSI Management Systems with zero non-conformalities. On 19-Jan-2009, the company obtained the ISO 27001 certificate issued by BSI and UKAS.

Congratulation! Hong Kong Examinations and Assessment Authority
Got ISO 20000 and ISO 27001 certified!
updated: 27 May 2010
The Hong Kong Examinations and Assessment Authority (HKEAA) is a statutory body established in 1997 and is aimed to world-renowned examinations and assessment services.

To ensure a valid, secure, reliable, and equitable examination and assessment services for the Hong Kong Certificate of Education Examination (HKCEE) and the Hong Kong Advanced Level Examination (HKALE) and the Hong Kong Diploma of Secondary Education (HKDSE) Examination, the Authority engaged i-TotalSecurity Consulting Limited to help establish an ISO 27001 compliant Information Security Management System (ISMS) and an ISO 20000 compliant IT Service Management System (ITSMS).

On 2008 and 2010, we have successfully implemented an ISMS and an ITSMS covers all the offices, facilities and data centres for the electronic processing and control of HKCEE and/or HKALE candidate information.

On March 2008 and May 2010, the ISMS and ITSMS were certified by BSI Management Systems without any non-conformalities.

Congratulation! CIGNA & CMC Life Insurance Co Ltd
Got the whole company ISO 27001 certified!
updated: 11 Mar 2008
After successful completion of the ISO 27001 project in CIGNA Hong Kong, we start the ISMS implementation on the joint venture of CIGNA International and China Merchants Group.

Under the scope of protection of customer information, this ISO 27001 project covered all the 700+ staff working in all functional departments of the company in Shen Zhen, China. Chaired by the Chief Insurance Officer, an Information Security Committee was established consisting of representatives from all major departments.

Next, we worked with the Information Security Managers to produce the simplified Chinese version of Asset Inventory, Risk Management Report, Security Policies, Security Procedures and Records. After 2 months of continuous monitoring and assessments, the ISMS of CIGNA & CMC was audited by BSI auditor on December 2007 and January 2008.

As there was no single non-conformity identified, the ISO 27001 certificate had been issued by UKAS and was given to the company on March 2008.

Congratulation! ACE Mold Industrial (Shen Zhen) Co Ltd
Got ISO 27001, ISO 14001 and OHSAS 18001 certified!
updated: 06 Sep 2007
In order to become a world-class enterprise and to boost international customer's confidence on its intellectual property rights protection, this Shen Zhen plastic mold design and manufacturing factory decided to establish an ISO 27001 compliant information security management system (ISMS), merging with its existing ISO 9001 management system, and get it certified.

Among various consultants, ACE Mold engaged i-TotalSecurity to provide the management system implementation and certification consultancy services

The scope of ISMS covers the protection of plastic mold and customer data. All the 600+ factory staff are involved. After conducting risk assessments, and delivering the necessary training, we developed the required security documentation (in both Chinese and English), implement all necessary managerial, physical and technical security controls, and instituted behavior changes on all staff.

On August 2007, the ISMS passed the certification audits conducted by BVQI auditors with only 1 minor non-conformance. Moreover, we also help established an ISO 14001 compliant environment management system and an OHSAS 18001 occupational health and safety management system in ACE Mold. These systems are also get certified on the same day.

ACE Mold would be the FIRST manufacturing company to get the ISO 27001, ISO 9001, ISO 14001, and OHSAS 18001 certified in China.

Congratulation! CIGNA Worldwide Life Insurance Co Ltd and
CIGNA Worldwide General Insurance Co Ltd got ISO 27001 certified!
updated: 01 Aug 2007
Being a largest insurance companies in the world, CIGNA has been providing quality health care; offering retirement security; managing investments; and taking care of the unexpected.

To further strengthen its customer data protection, CIGNA commissioned i-TotalSecurity to establish an Information Security Management System (ISMS) in the Hong Kong call centre and help it get certified.

Under CIGNA's existing security framework, we established additional ISO 27001 compliant security policies & procedures, optimized certain operation and IT proceses, hardened their technical infrastructure, and conducted various in-depth pre-certification audits.

On May 2007, the ISMS of CIGNA was certified by the British Standard Institute with totally only 1 minor non-conformality. It is the first insurance company call centre who get this prestige certification in the Hong Kong.

Ethical Hacking and Penetration Testing Course in Karachi Pakinstan
updated: 08 Jun 2007
Jointly organized by i-TotalSecurity and Ferguson Associates (Pvt) Ltd, an Ethical Hacking and Penetration Testing Course has been successfully delivered on 04-06 June 2007 in the Sheraton Hotel of Karachi, Pakinstan and brings our practical expereinces in technical security assessments on mission critical information systems to the information security managers, specialists and consultants of Pakistan. Due to positive and overwhelming responses, the same course will be launched again on 06-08 Aug 2007.

ISO 27001 ISMS Implementation Course in Karachi Pakinstan
updated: 30 Mar 2007
On 25-28 Mar, i-TotalSecurity has delivered, in association with a leading management consulting firm Ferguson Associates (Pvt.) Ltd, another ISO 27001 ISMS Implementation Course in the Marriott Hotel of Karachi, Pakinstan and bring our excellency in information security training and successful ISMS implementation experiences to the business, financial and technology professionals of Pakistan. At the end of the training, participants have taken a written examination and obtained an ISMS certified implementer.

Being First in China and First in Macau
Congratulations! CTM IT got ISO 20000 and ISO 27001 certified!
updated: 30 Sep 2011
As the major telecommunication services provider in Macau, Companhia de Telecomunicacoes de Macau S.A.R.L. (CTM) has become the FIRST in the Greater China Region and Macau to obtain the ISO 27001 certificate for its IT Department!

In ensuring a smooth and successful certification process, CTM has made the right choice of engaging i-TotalSecurity as the ISMS implemenation consultant. Within a 4-month period, we have driven the establishment of the Information Security Management System, enhanced their security policies, modified the existing IT processes & procedures, and conducted various in-depth and comprehensive audits, so as to fully implement all the relevant ISO 27001 controls and the PDCA continuous improvement cycle.

During the 2-phase certification audit, CTM has scored a minimal number of non-conformities and observations. Even the certification auditor commented that ISMS of CTM is better than other certified companies!

On April 2011, i-TotalSecurity was engaged as the ITSM consultant to build the IT service management. On Setpember 2011, CTM IT got ISO 20000 certfiied by BSI Management Systems without any non-conformity!

ISO 27001 ISMS Implementation Course in the Macau
updated: 02 Dec 2006
This year, i-TotalSecurity works again with the Macau Productivity and Technology Transfer Center (CPTTM) to design and deliver an ISO 27001 ISMS Implementation course in Macau. Attendees include the IT management and administration professionals from various government departments, financial institutions and leading corporations of Macau. This 3-day course teaches the details of and shares our successful experiences in implementing an ISO/IEC 27001 compliant information security management system. The course was successfully completed on 02 Dec 2006.


Professional Diploma in Corporate IT Security
updated: 02 Aug 2005
A proof of superior quality and competency!

i-TotalSecurity collaborates with the School of Continuing Studies of the Chinese University of Hong Kong (CUHK) to design and deliver the Professional Diploma in Corporate IT Security. The first intake of this course has been launched successfully in 02 Aug 2005.

This is a practical security course that covers the essential technical skills of an information security professional, such as information security governance, perimeter network design and defense, intrusion detection and prevention, ethical hacking and penetration testing, forensic investigations, and business continuity management. Upon completion of the course, students who satisfy the graduation requirements will obtain a Professional Diploma issued by CUHK.

ISO 27001 ISMS Implementation Course in the Macau
updated: 30 Nov 2006
i-TotalSecurity has been invited by the Macau Productivity and Technology Transfer Center (CPTTM) to design and deliver an ISO 27001 ISMS Implementation course in Macau. Attendees include the IT management and administration professionals from various government departments, universities and leading corporations of Macau. This 3-day course teaches the details of implementing ISO/IEC 27001 in different commercial and government organizations.


CEF Registered - Professional Certificate in IS Control, Audit & Security Management
updated: 31 Jan 2005
Ride on 10+ years of experiences in teaching information systems audit, control and security, i-TotalSecurity has designed this new course that has been included in the list of reimbursable courses for CEF purposes. This course provides comprehensive coverage of the essential IS control, audit and security management know-how, plus the effective techniques in developing a risk-based IS audit and security strategy, as well as conducting IS control reviews of mission-critical systems.

Upon completion of this course, students may want to take the public examinations and become as a CISA, a CISSP and a CISM. Besides, students can apply for the Continuing Education Fund (CEF) and obtain 80% course fee reimbursement.

http://www.i-totalsecurity.net/cisacisspcef.php
http://www.info.gov.hk/sfaa/cef/course.htm