Gap analysis against ISO 17799 standard and best practices to identify gaps in current information security of organisations.

Prepare information security policy to meet ISO 17799 standard.

Write procedures to implement information security policies.

Establish information security management framework to comply with ISO 17799 standard and perform compliance audit.