Queensland Government ISMS services announcement

Standing offer arrangement

Qudos is delighted to announce that a Standing Offer Arrangement is now in place between the State of Queensland acting through its DCHDE  and Qudos Management Pty Ltd. The Standing Offer Arrangement provides for a range of services to assist with cyber / information security and ISO 27001 compliance. The relevant documents have been loaded onto the Queensland Contract Directory (QCD), and we are onboarded to ICTSS.2105A Cyber Security - ISMS and ISO 27001 Services for Queensland Government agencies to commence engagement. The services include:

ISMS Review

Providing an external review of the implementation status and maturity of an agency’s ISMS in the IS18 reporting format suitable for completion of the agency’s annual return.

ASD Essential 8 Review

Providing an external review of the status and maturity of the agency’s implementation of the ASD Essential 8 in the IS18 reporting format suitable for completion of the agency’s annual return.

ISMS Gap Analysis

Providing an external review of the implementation status and maturity of an agency’s ISMS against its defined scope. This may include ISO 27001:2022.

ISMS Professional Services

Delivered by experienced and certified personnel to assist agencies in their ISMS journey. This may include assisting in reviews of policies, defining implementation scope, providing ISMS risk analysis, or assisting in the documentation, development and implementation of the agency’s ISMS.

The agreement is in place now and is applicable to any Queensland Government agency or entity. Contact us to discuss your requirements.

Qudos ISMS Services

Of course, Qudos can also provide ISMS services for other public and private sector clients. Those services can be provided in person or remotely. So, we can work with clients in just about any location globally. Once we know your goal, the first step is typically to perform a review of the current situation - where things stand right now. That could include a general IT Security Review. if you are seeking ISO 27001 compliance / certification, we would perform a gap analysis against the standard. We can then progress to providing consultancy, training and other services as may be required. If you would like to know more about Qudos' ISMS services, click on the Contact us button below.

ISO 27001

If you would like to know more about ISO 27001:2022, a quick way to start would be to check out this slide deck: Qudos_ISO_27001 Information_Security_in_plain_English (PDF)

Essential 8

While nothing can 100% guarantee to protect against all cyber threats, the ACSC (Australian Cyber Security Centre) recommends implementing eight essential mitigation strategies as a baseline. If you would like to know more about Essential 8, there is information available here on the ACSC web site..