objective audit
Standards as ISO can be tested via the COBIT CMMI maturity model, which unambiguously determines the maturity level of a policy. The ISO 27002:2007 is freely available given that your company has an ISO license; otherwise the license fee will have to be paid. Your own standards can be audited using BMTool as well.
reporting
Results are immediately made visible in various reports. Current results can be graphically compared with the baseline and previous audits. Reporting is dynamic such that the right level of detail is available for all management levels of your organization.
benchmarking
Organizations that audit against the same standards are able to participate in a benchmark consisting of competitors and colleagues. Organizations will remain anonymous for each other, which allows you to compare your organization with other without giving away your secrets. Benchmark reports are generated automatically.
BMTool
The BMTool platform employs an automated and intuitive system for adding users, making available standards, baselines and reports. Results are encrypted and are only available for the added user. BMTool allows you to delegate (part of) the audit to users of within your organization, which in turn allows these users to answer statements in the same unambiguous way. BMTool subsequently collects these answered statement sets and combines them. When all the partial results are gathered, the report can be generated.
references
BMTool is currently being offered to all members of CIO-Platform Nederland. Over thirty of their organizations currently use the tool, and a rollout to an additional seventy organizations is scheduled for 2011.
contact
BMTool is developed on record of and by Qubis. You can always get in touch with Qubis in case you have questions or are interested in the tool. You can reach us by phone via +31(0)53-8200924 or send an email to info@qubis.nl.