HOME | SERVICES | ABOUT US | CONTACT

Fitzgerald InfoSec

Fitzgerald InfoSec is an independent consultancy specializing in the availablility, integrity, and confidentiality of information and encompassing logical, physical, and human based threats and vulnerabilities.

Since its beginning in 1975 Fitzgerald InfoSec has always practiced within its creed - "a problem well defined is a problem half solved".

For us, this creed means that significant emphasis is placed on understanding the client's problem. From our very first meeting with the client, we actively listen to the client's assessment of the problem, providing feedback and clarification until we are sure that the problem is clearly understood by both client and consultant. Where necessary further research may be needed as part of the project to clarify the implications of the problem. In some of our services this research is already included as part of the methodology.

Once agreement is reached on the understanding of the problem and its implications, more focused options can be developed and solutions devised before the best fit solution is recommended. This approach leads the client to Information Security solutions which effectively satisfy their business needs on a long term scale .

Although we operate within a technological environment our focus is primarily on satisfying business objectives within the client's technology framework, not on satisfying technological objectives alone.

In all projects that we undertake, we work with the client, assisting them to understand the problem and its solutions. We do not impose our ideas. We go with our clients on the journey so that our recommendations fit the organisation's risk tolerance, current and future needs, culture, budget, and management style.

You will gain much from exploring our website and understanding our approach and what we have to offer. We look forward to hearing from you and discussing your needs.

Fitzgerald InfoSec has worked throughout all Australian states, Asia and in many parts of the northern hemisphere. Projects have included all services listed here in all industrial and government sectors including: banking and finance, education, transport, mining, oil, telecommunications, manufacturing, and Federal, State and Local governments.

Our work involves independent consulting advice around the following specific topics within the Information Security, Computer Security, and Enterprise Security arenas:

Information Security Policies and Standards -  AS/NZS ISO/IEC 27001:2006, HB 221:2004, AS/NZS 4360:2004, Guidelines created and reviewed;

Risk Analysis , Information Security Risk Management as well as Enerprise-wide Risk Management including Risk mitigation and Risk Registers;

Business Continuity including Site security Reviews, Emergency Management, Crisis Management, Recovery Command & Control, Business Impact analysis, Contingency Strategies, Business Recovery Planning, ICT Disaster Recovery Planning, Business Recovery Training, ICT DRP Training, BC Test and Maintenance;

Human Aspects of Information Security (HAIS)  - creating a cooporate security culture through exploring the staffing life-cycle;

Information Security Training and Awareness - International Computer security Day, induction guidance, workshops, online tutorials developed;

Information Security Outsourcing  - Business Continuity Test and Maintenance, Annual Risk Management, Annual Physical Security Review and Mitigation, and Annual Information Security Standards Compliance.