IT and security governance establishment
Europe
Challenge
Provision of critical services to the society is no longer an exclusively public domain. Society is becoming increasingly reliant on private companies for the provision of critical services. On the other hand, critical infrastructures rely on information systems to provide these services. Therefore, reliability of information systems is of paramount importance.
Solution
Establishment of a practical IT and information security governance system to enable the client effectively manage its information systems and information security risks.
Services provided
- Establishment of IT and information security governance processes in accordance with external security requirements as established by the Minister of Energy and addressing the findings of security audit;
- Establishment of physical security requirements for data centres;
- Definition of CSO roles and responsibilities;
- Establishment of IT asset management procedures;
- Establishment of information security audit procedures;
- Establishment of procedures for confidential information management;
- Review and update of IT risk assessment methodology and procedures;
- Development of procedures for an acceptable use of assets;
- Development of procedures for access to security zones and list of authorized personnel;
- Development of information security incident management plan;
- Development of business continuity and recovery plans.
Other stories
National Critical Information Infrastructure Identification Methodology
IT security assessment for Viciunai Group
Support to cybersecurity in Ukraine
Digital forensics capacity building
Set-up and implementation of centralised digital forensic laboratory
Implementation of advanced analysis solution
Secure Soft security operation center (SOC) maturity assessment in Peru
