ISO 27002/27001 services
ISO27001 is a standard specification for Information Security Management Systems and ISO27002 (formally ISO17799) is an internationally recognized Information Security Management Standard published by the International Organization for Standardization. We can assist the client in preparing for ISO 27001 certification.
- Scoping and Gap Analysis
Scoping and Gap Analysis - We assess the agreed upon scope of the client's organization for ISO 27001 certification against the required components to achieve certification, including the detailed controls from ISO 27002.
- Remediation
We assist you in fixing any issues arising from the gap analysis and verify adequacy of documentation.
- Trial audit
We simulate the review to assess readiness for ISO27001 certification.
Payment Card Industry
The Payment Card Industry (PCI) Data Security Standard was created by major credit card companies to safeguard customer information.
- Gap Analysis
We conduct a full audit of the end-to-end data flow analysis and assess all the components that store, process or transmit cardholder data. The review also cover external connections include network, connections to/from the authorization and settlement environment, all data repositories, point-of-sale systems (including wireless connections).
- Remediation
We assist you in developing a communications strategy and plan associated with the remediation effort.
Regulatory Compliance
- Gap Analysis
We conduct a gap analysis of your operational procedures against the regulator requirement and provide recommendations on how to address the gaps to avoid breaches of any law, statutory, regulatory or contractual obligations, and of any security requirements.
- Remediation
We assist you in evaluating the technologies and implementing the technologies in your environment that help you to close the identified gaps.
