Cyber Strategy and Governance

• Cyber security framework assessment and preparation
• Third-party risk management/Vendor risk management
• ISO-27001/ISMS readiness/assessment
• Cyber regulatory compliance assessments (RBI, IRDA, etc.)
• PCI DSS compliance readiness
• Information systems compliance assessments
• Cyber security strategy and board review
• Cyber security maturity assessment
• NIST readiness/Assessment 

Cyber Vulnerability Management

• Application security (source code review - SAST/Dynamic application assessment - DAST )
• Vulnerability assessment and penetration testing
• Infrastructure configuration reviews (firewall, router, switches, etc.)
• Network architecture review
• Red team and blue team exercise
• Cloud security
• IoT security
• Phishing assessment
• SCADA and IT-OT assessments
• Wireless assessment 

Data Privacy and Protection

• Data privacy and protection advisory
• GDPR readiness/Gap assessment and roadmap
• Data protection - regulatory assessments
• Digital risk management
• PMO services in data protection
• Data privacy training and awareness
• Computer system validation
• DPO as a service 

Cyber Resiliency and Response

• Business continuity planning and DR planning
• Cyber crisis management, response and recovery
• Cyber war gaming 

Cyber Threat Management

• Anti-phishing and anti-malware monitoring
• Cyber threat intelligence
• Dark web analysis
• Security operation centre - Services
• Cyber incident management
• Malware analysis
• Threat modelling 

Security and Identity Solution

• IDAM/PIM/PAM Solutions/Architecture
• IDAM/PIM/PAM implementation support
• Security solution review
• Access governance framework design and review

Cyber Forensics

• Cyber forensics analysis
• Cyber investigation support 

Cyber Compliance & Attest Services

• SOC 1/SOC 2, SSAE 18, ISAE attest services
• HiTrust compliances

Key value additions

Our cyber advisory is here to help the leadership chalk out their cyber risk management in an integrated fashion with the overall risk management framework of an organisation. Our bouquet of services can help you derive the following benefits:

• Formulate a strategy and governance mechanism to regularly monitor and take informed action on the pertinent cyber risks
• Ensure constant update to the threat vectors via threat intelligence and ensure effective security operations
• Provide a holistic cyber resiliency plan, which is not limited to crisis and disasters
• Develop active and passive defence mechanisms that protect organisations from the blitzkrieg of the cyber attackers
• Maintain compliance, including regulatory and business requirement or data protection act/international standards (ISO, NIST, etc.) requirement, proactively
• Manage security of an organisation through advanced solutions managed by our highly trained professionals
• Identify, assess and treat risks across people, process and technology, and continuously improve the risk posture of an organisation