This site uses cookies to provide you with a more responsive and personalised service. By using this site you agree to our use of cookies. Please read our PRIVACY POLICY for more information on the cookies we use and how to delete or block them.
  • Security and Governance

Security and Governance

IT security governance helps organisations to streamline the accountability framework and ensure that risks are mitigated adequately. We help to perform risk assessments, and define cybersecurity governance and frameworks using leading industry practices.

1. Cyber Maturity and Strategy Advisory:

Providing a review of an organisation’s information assets against cyber threats and planning the strategies to carry out the cyber assessment on the threats.

Our services include:

  • Cyber Maturity Assessment
  • Cyber Strategy and Roadmap
  • Cyber Critical Assets / Jewels Risk Assessment

2. Cyber Regulatory and Compliance Advisory:

Framing and implementing the rules and regulations that safeguard an organisation’s network security and protecting critical information stored as part of compliance.

Our services include:

  • Sector /Industry Regulatory Advisory  (e.g. RBI, IRDA, SEBI, TRAI, CERC, MAS, HKMA, NESA), Cyber Strategy and Roadmap
  • Cyber Compliance Management Services (RBI, IRDA, SEBI, IT Act, UIDAI, CERC, MAS, HKMA, NESA)
  • PCI DSS Compliance Assessments
  • Risk & Control Advisory and Remediation

3. Standards, Framework, and Architecture:

Establishing a standardised framework and architecture and helping the client to get a brief understanding of our tailored approach and flow of standards and their architecture.

Our Services include:

  • Information/Cyber Security Framework Development (based on NIST, ISO)
  • ISO 27001 Implementation Advisory
  • HIPPA/HITRUST Compliance Framework Advisory
  • Enterprise Secure Architecture Advisory

4. Business Continuity and Disaster Recovery:

Responding to an IT disaster and assistance to help systems to function in a normal way as quickly as possible.

Our Services include:

  • Business Continuity Planning (BCP) and Management Services
  • ISO 22301 Implementation Advisory
  • IT Disaster Recovery (DR) Review, Development (Process, Tools)
  • BCP/DR Drill Testing

5. Cyber Assurance and Due Diligence Services:

Assessing the current cyber security strategy and testing key exposure points with a clear plan for addressing vulnerabilities.

Our services include:

  • IT and Cyber Due Diligence in Mergers and Acquisitions (M&A)
  • SSAE 18 (Statement on Standards for Attestation Engagements No 18)
  • System and Organisation Control (SOC 1, SOC 2, SOC 3) Assessments

6. Cyber Third-Party Risk Management (TPRM) Advisory:

TPRM is critical from several aspects including operational security regulatory compliance.

Our services include:

  • Third-Party Security Risk Management (TPRM) Framework
  • TPRM Program Outsourcing
  • TPRM Program Execution