Compliance Assessment Services

Compliance Assessment Services

Compliance Assessment Services

Concurrent IS audits of datacentre

Daily audit as per company’s requirements especially Review of user management(creation, modification, deletion of user accounts and their privileges)

Review change management, Review Incident Management, Review backup process, daily audit trail verification for changes done in parameters, and tables, handling of failed transactions, handling of soc alerts

Review of VA?PT Compliance, Helpdesk Review, etc

Compliance to Payment Card Industry (PCI-DSS)

Review of compliance to PCI-DSS as per their standard guidelines for operations involving card

Compliance to Regulatory Guidelines like RBI, NBFC, NPCI, SEBI, IRDA, Aadhar, eKYC etc

Compliance to Regulatory Guidelines like RBI, NBFC, NPCI, SEBI, IRDA, Aadhar, eKYC etc

Compliance to GDPR, Data Privacy Regulations

Review of compliance to privacy Laws as per Law /Guidelines for data collection, transit and storage, preventive controls and measures undertaken by the client

Compliance to Cyber Security Guidelines

Cyber security Policy

Network architecture security, segregation of networks, redundancy and Load Balancing

Access controls, single point failure, presence of security devices such as firewalls, IDS/IPS, their placement, end point security, configuration Review

External VA/PT for vulnerable ports and openings, SIEM, SOC, performance, business continuity / Redundancy

Incident Management, monitoring and Review, tec., exploitation of vulnerabilities in wireless network, internet controls, email and web controls, social media controls etc

Capacity planning, performance monitoring, licenses and compliance, help desk, Cyber security preparedness indicators

Existence of SOC and its management Review, etc

Vendor Audit/Third party services audit/outsourced services security audit

SLA Review

Back ground verifications

Business Continuity

Skills, compliances will be reviewed of third-party Resources