- May 31, 2017
- By cEntuRYmINDS
- All
Assist organisations to meet their compliance requirements such as ISO27001, ISM, PCIDSS, Sarbanes-Oxley, SOCS2 and global data privacy requirements,
Work with your Internal Audit, Corporate Compliance, Risk Management team to remediate new and outstanding issues; track all security-related issues in the GRC system.
Assist with development and update of security policies, standards, guidelines and baselines.
Assist with development of Security awareness program.
Develop a risk framework and processes that allow for effective risk monitoring and mitigation, while still facilitating innovative, fast-moving, empowered cultures.
Perform vendor/3rd party security assessments and manage vendor relationships (from a risk and security perspective).
Assist organisations to bring risk-focused culture and process change through training and interaction with key leaders.
Assist organisations to define compliance strategy and lead regulatory compliance initiatives (e.g. ISM, ISO 27001, PCI DSS, SOX and soon).
Assist organisations to develop and implement a risk reporting framework for management teams and governance committees.