Assurance, Risk and Process Development

ITSEC Asia’s ISO 27001 gap analysis service is a comprehensive review of an organisation’s Information Security Management System (ISMS) to determine flaws or gaps in your existing security policies, procedures and controls.

ISO/IEC 27001:2006 specifies the requirements for establishing, implementing, operating, monitoring, reviewing, maintaining and improving a ISMS.

ITSEC Asia’s Gap Analysis accurately evaluates a company’s readiness to achieve ISO 27001 and measure the effort required to achieve certification. This service is suitable for any organisation that already started to implement ISMS and in plans to achieve ISO 27001 certification.

With an excellent track record in developing various security procedures that conform to ISO 27001 standards, ITSEC Asia has developed an exhaustive set of procedures required to achieve ISO 27001 certification. In addition, the measures improve the efficiency of an ISMS, such as portable computer use procedures, server and database security SOPs and incident response procedures, among others.

Assurance, Risk and Compliance services include:

  • Audits and GAP Analysis
  • ISO 27001
  • Peraturan Bank Indonesia (PBI) No.9/15 Tahun 2008
  • PCI-DSS
  • IT Audits
  • Threat, Vulnerability and Risk Analysis (TVRA)