IT Governance, Risk Management and Compliance

By addressing all aspects of your IT governance and infrastructure, we identify deficiencies and areas that need improvement, offer an applicable roadmap and solution suggestions, create the necessary processes and functions, identify the software and tools you need, and prepare policies and procedures:

• IT audit
• IT risk management
• Compliance with IT regulations
• Preparation and implementation of policies, procedures, plans and forms of IT processes
• Consultancy on IT audit weaknesses
• Standards:
  • COBIT v.4.1 v.5, and 2019 frameworks
  • ISO 27001 (ISMS – Information Security Management System) and 27002 (IS Controls)
  • ISO 22301 and Business Continuity Planning
  • PCI DSS
  • Cloud Security Alliance – Cloud Security Matrix v.4
  • NIST Cybersecurity Framework, SP800-53, SP800-171 and various others
  • CIS Critical Security Controls v.8
• Consultancy on tools used in IT processes such as SIEM (Log Management and Monitoring), Fraud Prevention, GRC (Governance, Risk and Compliance), DLP (Data Leak Prevention), PAM (Privileged Authority Management)