Technology Risk Consulting & Advisory

  • Design and Implement IT Risk Framework
  • Develop Governance Model
  • Develop Risk & Controls Framework
  • IT Audit and Assurance Programs
  • Automation of Audits and Controls Activities
  • Identify and Remediate Gaps in Existing IT Landscape

Regulatory Compliance & Assurance

  • PCI-DSS
  • HIPAA
  • ISO 27001:2013
  • Sarbanes-Oxley (SOX)
  • SSAE18 SOC-1, SOC-2 & SOC-3 Attestation
  • Regional Regulatory Requirements (RBI, IRDA, MAR etc.)

Third Party Risk Management (TPRM)

  • Develop & Implement TPRM
  • Third Party Information Security Assessments
  • Vendor Audits
  • Customers and Regulators Audit Management
  • Vendor Cyber Awareness Programs

E-GRC and ERP Services

  • Enterprise GRC Framework Development
  • Domain, Process & Functional Support for E-GRC
  • E-GRC Implementation Consultation
  • ERP Risk & Controls Development
  • Segregation of Duties (SoD) Design for ERP
  • ERP Audit

GDPR and Data Privacy

  • GDPR Assessment Service & Compliance
  • Virtual Data Privacy Officer (V-DPO)
  • Regional Data Privacy Compliance
  • Data Privacy Impact Assessments (DPIA)
  • Data Privacy Risk & Controls Framework

Business Continuity and DR Planning (BCP & DRP)

  • Develop BCP and DRP
  • Business Impact Assessments (BIA)
  • Resiliency Plan for Critical Infra and Applications
  • BC & DR Testing