SERVICE PORTFOLIO 2018

Copyright Notice ©

The information in this document and any oral presentations made by ProVise contains trade secrets and confidential and proprietary information of ProVise, the disclosure of which would provide substantial benefit to
competitors. As a result, this document should not be disclosed, used or duplicated – in whole or in part.
For presentation purposes. Do not circulate. Last updated on: 11th June, 2018 v5.2
 2

The ProVise Way

An independent, product agnostic, research driven advisory firm
specializing in GRC and Cyber Security professional services

About ProVise

Copyright © 2018 ProVise Management Consultancy www.proviseconsulting.com

 ABOUT PROVISE 3

PROVISE GROWTH IN 7 YEARS…

▪ ProVise – an independent
2011 2012 2013 2014 2015 2016 2017 2018 Governance, Risk & Compliance
(GRC) and Cyber Security
professional services
Oman Oman Oman Oman Oman Oman Oman Oman
India India India India India - Mumbai India - Mumbai ▪ Dedicated businesses - PGL & PSL
Foot print UAE - Dubai
UAE - Dubai UAE – Dubai UAE - Dubai India - Bangalore & Bangalore
UAE - AD UAE - AD UAE - AD UAE - AD UAE - Dubai UAE – Dubai,
Bahrain Bahrain Bahrain UAE - AD AD
Kuwait Kuwait Kuwait Bahrain Bahrain, Kuwait ▪ 7 years’ track record in ME - today
Kuwait KSA foot print in 7 countries and
expanding.
People 1 2 12 27 27 45 75 ▪ 175+ successful projects.
6
strength
▪ Research & Development and
Clientele 4 25 37
Thought leadership driven
2 6 8 12 17
approach
▪ Operates with Industry focus:
IT GRC IT GRC IT GRC IT GRC, GRC • BFSI
GRC Maturity GRC Maturity IT GRC Maturity • Oil & Gas
Security Security GRC Maturity Cyber Assurance, • Entertainment
Expertise Assurance Assurance • Government
Cyber Assurance Cyber SOC, R&D
SOC SOC Cyber SOC Cognitive Cyber • Manufacturing
R&D R&D Security • Telecom
Cognitive GRC

Copyright © 2018 ProVise Management Consultancy www.proviseconsulting.com

 ProVise Major Clients 4

Banking & Financial Energy & Utilities Entertainment & Government & ICT &
Services Leisure Parks Defense Telecom

Real Estate

Retail

Copyright © 2018 ProVise Management Consultancy www.proviseconsulting.com

 5
ABOUT PROVISE LABS AND ITS DNA

Partnership
Approach

Metrics Value Threat Assurance

Based
Governance Services Driven

Research Threat Assessment

Risk Services &
Innovation
Threat Detection
Compliance Services Outcome
Oriented
Thought
leadership
Threat Management
Industry
Govern effectively while managing Centric
Manage cyber exposure to an
Risk and Compliance acceptable level

Copyright © 2018 ProVise Management Consultancy www.proviseconsulting.com

 6
PROVISE LABS FACILITIES AND OFFICES

Security Operations Center - Abu

Dhabi

R&D Lab
Attack & Research
Dubai Lab -
Dubai

Advanced Cybersecurity Security Operations Center -

Center – Bangalore* Dubai

Dubai Office Abu Dhabi Office Mumbai Office Bangalore Office

Office 109, NBQ Office 1528, 15th Floor, 513, A-Wing, Kukreja Plaza, 3rd Floor, Indiqube Omega,
Building, Bur Dubai, Skyline Business Centre, Sec 11, CBD Belapur, Maruthi Emerald, ITPL Main Road
PO BOX 128152, Najda Street, Al Khazna Navi Mumbai, 400614, Bengaluru, 560 066
Dubai, UAE Tower, Abu Dhabi, UAE. Maharashtra, India. Karnataka, India.

Copyright © 2018 ProVise Management Consultancy www.proviseconsulting.com

 7

THE PROVISE WAY

What started off with two people in 2011 is now an entity spanning two
regions, trusted by global portfolio of leading customers

PROVISE SERVICE PORTFOLIO

Copyright © 2018 ProVise Management Consultancy www.proviseconsulting.com

 8
PROVISE SERVICE PORTFOLIO

2. Assure
Cyber Security Assurance
▪ Cyber Security Strategy
▪ Cyber Crisis Simulation
▪ Red Teaming
▪ Penetration Testing

R&D (Thinking Ahead)

1. Assess 4. Manage 3. Detect

Exploit Testing & Bug Hunting ▪ Cyber Security Monitoring
▪ Application Security
R&D ▪ IT Infrastructure Security
▪ CyberSOC Consulting & Eng. & Analytics
▪ CyberSOC Management ▪ Cyber Security Forensics
▪ ICS - OT Security ▪ Anti-Phishing
▪ Cyber Security Device Mgt.
▪ Telecom Security ▪ Brand Monitoring

Cyber Security
Cyber Security Data Life Cycle Cyber Security and GRC
GRC Strategy
Framework
People Security Governance
Management
Program/Project
Management
Automation

High level service listing only

Copyright © 2018 ProVise Management Consultancy
GOVERNANCE www.proviseconsulting.com
 9
PROVISE GRC LAB (PGL) – GRC SERVICES
PROVISE GRC LAB (PGL)

GOVERNANCE RISK COMPLIANCE

1. GRC Strategy 7. Risk Management Framework 10. Compliance Management
▪ IT/IS Governance (ITIL, COBIT, etc.) ▪ ISO 31000, ISO 27005, NCRMF ▪ ISO27001, ISO 20000, ISO 22301
▪ Cyber Security, Integrated Privacy & Compliance ▪ NESA, ADSIC, ISR
8. Disaster Recovery Management
▪ PCI DSS
▪ ESA - Enterprise Security Architecture
▪ DR Planning & Framework ▪ SOX, HIPPA
▪ BYOD & IOT
▪ DR Implementation ▪ Central bank, TRA, Govt. regulations
2. Cyber Security Framework ▪ DR Testing Assistance ▪ Reserve Bank of India (RBI) framework
▪ NIST, SAMA CSF ▪ DR Automation ▪ IRDAI guidelines for insurers in India
▪ Cloud Security framework (ISO 27017) ▪ IT Act
9. Business Continuity Management
▪ Aadhar Act by UIDAI
▪ NIST 800-53
▪ BCM Planning & Framework ▪ SEBI framework
▪ Cyber Crisis Management Plan
▪ BCM Implementation ▪ NBFC guidelines
3. People Security ▪ BCM Testing Assistance ▪ TRAI guidelines
▪ Awareness Training, Workshops & Gamification ▪ BCM Automation 11. Privacy Management
▪ Social Engineering Assessment
▪ GDPR
4. Data Lifecycle Management
12. Audit Management
5. Cyber Security Program/Project Management ▪ Internal Audit
▪ System Selection ▪ Third party Audit
▪ Integrated Audit
▪ Quality Assurance & Project/Program Management
6. Cyber Security and GRC Automation

Copyright © 2018 ProVise Management Consultancy www.proviseconsulting.com


PROVISE SECURE LAB (PSL) – CYBER SECURITY SERVICES
THREAT ASSESSMENT
1. Application Security
▪ Web Application Security Assessment
▪ API Security Assessment
▪ Mobile Application Security Assessment
▪ Source Code Review
2. IT Infrastructure & Network Security
▪ Compliance Reviews
▪ Vulnerability Assessments
▪ Secure Configuration Assessment
▪ Wireless Security Assessment
▪ Cloud Security Assessment
▪ VoIP Security Assessment
▪ Network Design & Security Assessment
3. Industry Control System (ICS) – OT Security
4. Telecom Infrastructure Security
Copyright © 2018 ProVise Management Consultancy
PROVISE SECURE LAB (PSL)
THREAT ASSURANCE
5. Cyber Security Strategy
6. Cyber Crisis Simulation
7. Red Teaming
8. Penetration Testing
THREAT DETECTION
9. Cyber Security Monitoring & Analytics
▪ SIEM Monitoring
▪ Threat Intelligence & Security Advisory
Feeds
▪ Threat Hunting
▪ Packet Analysis
10. Cyber Security Forensics
▪ Malware Analytics & Sandboxing
▪ Digital & Mobile Forensics
▪ Breach Assessment
11. Anti-Phishing Services
12. Brand Monitoring
www.proviseconsulting.com
10
THREAT MANAGEMENT
13. Cyber-SOC Consulting & Engineering
▪ Cyber SOC Advisory
▪ Cyber SOC Implementation
▪ Cyber SOC Health check & Design Review
14. Cyber-SOC Management
▪ Cyber SOC Monitoring & Operations
▪ DLP Management & Operations
▪ Incident Response Management
▪ Anti - Malware Management
▪ Web Application Firewall
▪ Minimum Security Baselines
15. Cyber Security Device Management &
Operations
 11

The ProVise Way

We believe in building your GRC capabilities not
just delivering projects.

PROVISE GRC LAB – CAPABILITIES

Copyright © 2018 ProVise Management Consultancy www.proviseconsulting.com

 12
PROVISE GRC LAB – IT GRC CAPABILITY MODEL
Enterprise Information Security, Risk & Threat Management (ISO 31000, ISO 27001, RiskIT, OCTAVE, ISO 27005)

IT GRC capabilities of an Enterprise Customer &

Stakeholder Value Delivery
organization can be streamlined

Business Service Continuity Management (ISO 22301, ISO 27031)

Enterprise Cyber Security Management (NIST, SANS, CIS, OWASP)
as the illustrated model.

▪ The outer frame shows Risk

and Compliance abilities
while the inner circle
ISO 38500:2008, COBIT
showcases Governance EFQM, KPIs & Metrics
IT Business Alignment
Performance
capabilities Management
Enterprise
▪ Objective of this model is to : Architecture
ToGAF,
Deliver Value; Govern ITIL, ISO 20000:2013 SABSA
effectively; while managing Business & IT Service Prince2, ISO21500:2012
Risk and Compliance. Management Portfolio & Program
Management

CMMi, Agile / SPICE / SDLC

Solution Lifecycle Management

Enterprise Privacy & Compliance Management (ISO 27001, PCI - DSS, GDPR, HIPAA, Regulatory)

All product names, logos, and brands are property of their respective owners. All company, product and service names used in this website are for identification purposes only.
Copyright © 2018 ProVise Management Consultancy www.proviseconsulting.com
 13
PROVISE IT GRC MATURITY CURVE
IT GRC capability and maturity contributes to growth of an organization

The maturity curve represents the capability and maturity of an IT

GRC function as one of the following.
▪ Differentiator : providing business a completive edge
▪ Enabler : integrated in business functions
▪ Facilitator : proactively delivering tangible results
Value
▪ Support : primarily reactive and compliance driven IT/IS in DIFFERENTIATOR role
Competeitve edge in market place

Service

IT/IS in ENABLER role

Beyond business alignment… now business integartion
Proactive

Reactive IT/IS in Facilitator role

IT GRC a proactive service and enterprise strategic capability

Fire Fighting IT/IS in SUPPORT role

In a support role. Primarily reactive and/or compliance driven

Copyright © 2018 ProVise Management Consultancy www.proviseconsulting.com


WE SERVE THE FOLLOWING PEOPLE AT YOUR ORGANIZATION
▪ Chief Information Officer (CIO)
▪ Chief Risk Officer (CRO)
▪ Chief Information Security Officer (CISO)
▪ Chief Technology Officer (CTO)
▪ Chief Operations Officer (COO)
Copyright © 2018 ProVise Management Consultancy
14
▪ Cyber Security Head/Manager
▪ Risk & Compliance Head/Manager
▪ Compliance/Governance/Procurement-
Head/Officer
▪ IT Vice President – Head/Manager
www.proviseconsulting.com
 15

CONTACT US – PROVISE INDIA TEAM

Copyright © 2018 ProVise Management Consultancy www.proviseconsulting.com

 16

THANK YOU

Copyright © 2018 ProVise Management Consultancy www.proviseconsulting.com