OIS-ISMS、PIMS, and GHG Emission Reporting services
Brief Introduction
The information security consulting team provides services to government agencies, enterprises, and organizations to meet the legal compliance requirements of Taiwan's Information Security Management Act and Personal Data Protection Act. Additionally, they offer consulting services to meet the security standards for semiconductor wafer equipment. The team assists clients in obtaining certifications related to Information Security Management Systems (ISMS) and Privacy Information Management Systems (PIMS), such as ISO 27001, ISO 27701, ISO 27017, ISO 27018, ISO 22301, BS 10012, and SEMI E187. Furthermore, for publicly traded companies with a market capitalization below NT$5 billion, the team provides guidance on compiling and reporting sustainability reports in accordance with Taiwan's regulations. This includes disclosing climate-related information in a dedicated chapter and gradually disclosing and ensuring compliance with Scope 1 and Scope 2 greenhouse gas emissions requirements. The team also offers organizational greenhouse gas emission consulting services.
Descriptions of Features and Advantages
Open Information Security Inc, OIS, is a subsidiary of HwaCom, the Cybersecurity consulting team that adheres to the PDCA management cycle spirit, which includes "Plan," "Do," "Check," and "Act" phases. This team uses a seven-stage cyclical guidance methodology (Figure 1) to assist organizations in establishing and maintaining Information Security Management Systems (ISMS) or Personal Information Management Systems (PIMS). The goal is to help these organizations successfully pass third-party audits and obtain certifications such as ISO 27001, ISO 27701, ISO 27017, ISO 27018, ISO 22301, BS 10012, or SEMI E187.
ISMS and PIMS Implementation Methodology Diagram
The greenhouse gas emission reporting consulting team, impletmeted based on the environmental management system ISO 14001's PDCA management cycle (Plan, Do, Check, and Act), as well as the requirements of ISO 14064-1, uses a 7-stage cyclical guidance methodology (Figure 2) to assist organizations in establishing and maintaining their greenhouse gas management systems. This enables them to successfully pass third-party verification/validation and obtain the ISO 14064-1 verification statement.
Organization GHG emission reporting Implementation Methodology Diagram
Benefits
ISMS & PIMS Consulting service
- Highlight Cybersecurity or Personal Data Protection Capabilities
- Ensure Uninterrupted Operations
- Reduce the Risk of Cybersecurity or Personal Data Incidents
- Demonstrate Fulfillment of Cybersecurity or Personal Data Protection Responsibilities
- Enhance Industry Competitiveness
- Enhance Corporate or Organizational Reputation
GHG emission reporting consulting service
- Comply with Financial Supervisory Commission, FSC, requirements
- Align with national carbon neutrality and net-zero emissions policies
- Enhance corporate governance evaluation scores
- Boost organizational competitiveness
- Enhance corporate or organizational reputation
Applications
ISMS & PIMS Consulting service
- Agencies subject to the Cybersecurity Management Act and Personal Data Protection Act
- Enterprises or organizations seeking ISO 27001, ISO 27701, BS 10012, or SEMI E187 certifications
- All types, sizes, of industries
GHG emission reporting consulting service
- Listed companies with market capitalization below NT$5 billion.
- Export traders, export manufacturers, service industries, etc.
- Upstream and downstream sustainable value chains
- Organizations seeking ISO 14064-1 verification statements.
Contact Window
Success Cases
Since the establishment of our cybersecurity consulting team in March 2020, we have successfully guided various organizations, including government agencies, hospitals, schools, technology manufacturing industries, information industries, energy management industries, broadband network industries, and cable television industries, in implementing or maintaining cybersecurity and personal data management systems. Our actual consulting experience includes, A-level agencies: 3, B-level agencies: 6, C-level agencies: 36, Enterprise Organizations: 17. In 2024, we formed a GHG service team and participated in carbon risk and decarbonization strategy consulting for one publicly traded company with a capitalization below NT$2 billion and one local government agency.
Announcement
In May 2023, Open Information Security (OIS), a cybersecurity subsidiary, was established by the original HwaCom Systems Inc cybersecurity team. With its business operations now independent, Open Information Security is committed to providing customers with professional cybersecurity expertise, high-quality services, and a sustainable business approach.
