LOTTO Mecklenburg-Vorpommern became certified under ISO 27001. The company received structured help with the development of its ISO 27001-based security concept, in the form of SecureAware software from the Danish company Neupart. SecureAware also remains pivotal to the continued operation of the Information Security Management System (ISMS).

Read more about how LOTTO Mecklenburg-Vorpommern prepared for ISO 27001 certification

Learn more about the Lottery-specific ISMS solution

Read more about why was SecureAware from Neupart awarded

About Network Products Guide Awards

As industry's leading technology research and advisory guide, Network Products Guide from Silicon Valley plays a vital role in keeping decision makers and end-users informed of the choices they can make in all areas of information technology. You will discover a wealth of information and tools in this guide including the best products and services, roadmaps, industry directions, technology advancements and independent product evaluations that facilitate in making the most pertinent technology decisions impacting business and personal goals. The guide follows conscientious research methodologies developed and enhanced by industry experts. To learn more, visit www.networkproductsguide.com

Lightwave Security

SecureAware was submitted for the award by Neupart's North American partner Lightwave Security.

Press release about the innovation award

RSA Conference..

Request free RSA 2010 Expo Pass..

SecureAware at RSA..

Over the years, Neupart has built up an experience and tradition to be ISO27001 certified:

• In 2003, Neupart certified against the BS7799-2 standard for the first time. This British Standard were a forerunner to ISO27001.
• In 2006, Neupart become ISO27001 certified for the first time.
• In 2009, Neupart again elected to seek certification, and passed the comprehensive certification audit process.

Neupart's ISMS is of course based on SecureAware, which is a all-in-one  ISMS solution.

Learn more about ISO27001 here.

See the CRN description of SecureAware or read the CRN front page here.

SecureAware helps organizations comply with Payment Card Industry (PCI) standards; governmental regulations such as SEC, Sarbanes-Oxley (SOX) and others; and ISO 27000 best practices, as well as manage business risks. An all-in-one platform for compliance, best practices and security awareness, it allows organizations to perform full lifecycle management of risk assessments and IT audits while creating one defensible standard of care. The IT GRC system collects policies, IT controls and risk information that are located in disparate locations throughout the enterprise, automates repeatable processes and allows organizations to respond rapidly to new compliance mandates, audit requests and evolving business risks.

"SecureAware is already being used successfully by more than 200 companies, municipalities and government agencies in Europe and we're fortunate to be the ones selected to bring this exceptional IT GRC system to the U.S. and other North American organizations," said Joseph Dell, Lightwave's president. "We are energized about working with Neupart and look forward to helping IT executives and risk managers alleviate their compliance worries and 'future-proof' their compliance programs."

SecureAware provides a single collaborative workflow designed to international standards to make it easier for organizations-ranging from enterprises to small businesses to governmental agencies-to manage multiple compliance mandates, create policy management efficiencies, conduct security awareness training and reduce business risks. Delivered as software or Software as a Service (SaaS), SecureAware includes the following modules:

• SecureAware Policy & Awareness Suite - A comprehensive policy management database for creating, maintaining and communicating security policies, procedures and guidelines across the organization.

• SecureAware Compliance - An automated compliance workflow system that allows organizations to comply with multiple mandates while establishing one defensible standard of care, simplifying compliance management and reducing compliance costs.

• SecureAware BCP - Helps organizations to create, manage and maintain a Business Continuity Plan (BCP) that fits exact requirements using editable templates to save time and resources, especially when creating a BCP from scratch.

• SecureAware Risk - Expedites the risk assessment process with a highly-efficient workflow engine to reduce the time and costs required to complete risk assessments, which are traditionally carried out in complex spreadsheets that produce inconsistent results.

"We are pleased that Lightwave Security is lending their extraordinary experience to represent SecureAware in a relatively untapped region where there's a true need for a better way to manage internal compliance programs," said Lars Neupart, CEO for Neupart. "Our partnership with Lightwave Security will augment our current base of clients in North America by providing a highly competent system for the distribution, support and customer service."

SecureAware is available now in the U.S., Canada, Mexico and Central America from Lightwave Security. For more information, call 800-616-8597 or visit www.lightwavesecurity.com.

About Neupart
Neupart, an ISO 27001 certified company, is the leading provider of IT governance, risk, and compliance management (GRC) solutions. Neupart helps large enterprises manage complex regulatory mandates and operational risk, and provides small businesses with little or no security expertise an all-in-one platform for compliance, best practices and awareness. Neupart generates ROI for its customers by collecting policies, IT controls and risk information that are in disparate locations throughout the enterprise; automating repeatable processes and allowing the organizations to quickly respond to new compliance mandates, audit requests and evolving business risks. More information is located at www.neupart.com.

About Lightwave Security
Lightwave Security is a GRC solution provider whose vast technical and practical experience provides organizations a foundation of assurance in managing business and technology risk. Lightwave Security's unique model of outsourcing compliance with traditionally complex regulatory and technical issues is a cutting edge approach not seen in the security space. Lightwave Security is based in Atlanta, Georgia, with affiliate offices and resources available across the globe. More is information is located at www.lightwavesecurity.com.

• Follow up on how well your security targets (policies, rules and procedures) are being met. With the new Compliance Analysis II module, you can automatically generate questionnaires based on your specific company policies.
• Now with a Maturity Check, this module can give you a quick overview of the extent to which security measures are being adopted in your organization
• How should employees respond to your questionnaire? What degree of compliance are you aiming for? Are 'yes/no' reply options sufficient? How 'security mature' is your organization? Now you can tailor your response options and alter their color coding to match the specific questions presented

Read more about SecureAware Compliance.

• Ensures that your BCP is always kept up-to-date, and practiced to the level you've decided (using the Compliance Workflow module
• Increases the availability of your continuity plans: Use SecureAware BCP standalone on a laptop computer. You can export your entire BCP as single a zip-file. Keep that zip file on a USB memory, or upload it in just one step into another SecureAware installation.
• Enjoy further benefits by combining your BCP with SecureAware as a Service, allowing secure BCP hosting

The new product contains BCP templates and plan structures, and supports multiple plans.

In a testament to the growing momentum behind ISO 27001, Microsoft Global Foundation Services has chosen to align its information security program with the international standard's rigorous requirements. As the first major online service provider to earn ISO/IEC 27001:2005 certification, Microsoft has achieved external validation that its approach to managing security risk in a global organization is both comprehensive and effective.

As ISO 27001 continues to demonstrate its value, more and more leading corporations like Microsoft are choosing the international standard as the foundation for their information security programs. ISO 27001 certification not only helps ensure effective security management practices, but also streamlines compliance with multiple regulations by providing one defensible standard of care. In fact, a 2007 survey revealed that 65 percent of organizations complying with PCI were planning to take a more holistic, standards-based approach to compliance by standardizing on ISO 27001.

For organizations interested in exploring ISO 27001 further, either for certification or standards alignment, Neupart SecureAware® Compliance is a process-driven compliance workflow system with an automated compliance checklist that assists organizations in performing a gap analysis against the ISO 27001/27002 series of standards. SecureAware® Compliance is a powerful, easy-to-use tool to accelerate ISO 27001 adoption within your organization, available in a low-cost standalone module or as part of the full SecureAware® suite for Information Security Management Systems.

Microsoft's support for ISO 27001 is likely to compel other organizations to do the same, including your own strategic partners. We encourage you to take the necessary steps to position your information security program for ISO 27001 compliance.

For more information:

Microsoft Earns ISO 27001 Certification

Neupart ISO 27001 Solutions