CONSULTING SERVICES

Service Offerings
 Information Security Management System (ISMS)
 Data Privacy Management System (DPMS)
 IT Attestations
 Business Continuity Management System (BCMS)
 Quality Management System (QMS)
 Business Process Excellence
 Supplier Security Assessments
Information Security Management
System (ISMS)
 ISMS development - Risk analysis, security controls
analysis and selection, framing ISMS strategy,
governance, and policy
 ISO27001 Certification assistance
 Information Security Management (BCM) maturity
assessment
 ISMS trainings and ISMS audits/reviews
 Establishment of a Project Management Office (PMO)
for the implementation of ISMS initiatives
 ISO 27001 certification audit
Data Privacy Management System
(DPMS)
 DPMS development – Privacy Impact Assessment, Risk
analysis, framing DPMS strategy, governance, and
privacy policy
 EU GDPR, various country specific Data Protection Acts
compliance assistance
 BS 10012 certification assistance
 Data Privacy Management maturity assessment
 DPMS trainings and ISMS audits/reviews
 Establishment of a Project Management Office (PMO)
for the implementation of DPMS initiatives
IT Attestations
 Readiness assessments and control testing for :
 SOC 1 (ISAE3402 / SSAE16): Assurance on controls relevant
to the customers’ internal control over financial reporting
(SOC 1 - ISAE3402/SSAE16)
 SOC 2 & SOC 3 (ISAE3000): Assurance on controls over
security, availability, processing integrity, confidentiality and
privacy of customer information handled by service
organizations based on the Trust Services Principles and
Criteria (SOC 2 and SOC 3 - ISAE3000)
 Assessment for SOC1, SOC2 & SOC3 by CPA firm
 Agreed upon procedures (AUP): Assistance in
performing specific procedures, and providing the
results in the form of a report.
Business Continuity Management
System (BCMS)
 BCMS development - Risk analysis, business impact, and
requirements analysis, framing strategy, governance, and
policy
 ISO22301 Certification assistance
 Business Continuity Management (BCM) maturity assessment
 Disaster recovery management development
 Evaluation and selection of DR hosting providers
 BCM trainings and BCM audits/reviews
 Establishment of a Project Management Office (PMO) for
the implementation of BCM or DR initiatives
 ISO 22301 certification audit
Quality Management System (QMS)

 QMS development - Risk analysis, framing QMS

strategy, governance, and policy
 ISO9001 Certification assistance
 Quality Management System (QMS) maturity
assessment
 QMS trainings and QMS audits/reviews
 Establishment of a Project Management Office
(PMO) for the implementation of QMS initiatives
 ISO 9001 certification audit
Business Process Excellence
 Process re-engineering
 Process improvement
 LEAN / Six Sigma deployment across the
organization
Supplier Security Assessments
 Conduct Risk Assessment of the vendor
 Conduct risk based security evaluation
 Report due diligence findings
 Assistance to effectively close the due diligence
findings
Value Proposition
 Deep understanding of the IT and IT outsourcing
industry
 “No Surprises Least Disruptive” approach
 Structured methodology and tools
 Professional fees –fair with no hidden surprises
 Association with industry body in defining standards
and developing emerging approaches
Thank you