Cyber Security Framework Implementation Overview

Cyber Security Program aims to protect the organizations’ cyber infrastructure and digital assets. The framework touches upon wide variety of global practices and cover ISO 27001, COBIT, SANS, PCI to name a few.

We have a 6-phase Methodology, to help you achieve successful compliance.

What is Cyber Security Framework (CSF)?

The framework provide security controls – that includes technology, skills, processes and roles and responsibilities to cover the following coverage:

  • Identify
  • Protect
  • Detect
  • Respond
  • Recover

Project Phases - Broadly

We have a structured approach to determine the applicable risks and controls that are required to successfully implement the framework.

Phase I – Determination of Objectives

This phase involves determining organisation cyber infrastructure and key stakeholder expectations.

Phase II – Gap Analysis

This phase involves performing gap analysis of the above listed objectives on one hand, and the applicable Cyber Security controls and related risks, on the other. We provide solution for all identified gaps.

Phase III – Control Design and documentation

This phase involves our methodology that involves distribution of risk, and control responsibility to internal stakeholders. This also includes nomination of key roles such as security officer – who will drive the ongoing compliance. In addition, we enable the organisation to define and implement key security processes that ensures ongoing compliance.

Phase IV – Tracking

This phase involves tracking the client risks, documentation and self-compliance on a weekly basis till all internal controls are adequately implemented.

Phase V – Performance Tracking

This phase involves measuring internal control changes on a scale of 0-100%. This gives assurance to internal stakeholders that the processes implemented are adequate (or at risk). If there are deviations or risks identified, they are treated.

Phase VI – Internal Audit

An independent assessment is performed to ensure and rate organisation maturity of handling future security risks on the cyber security framework.

At this stage the client has implemented the governance system in completeness.

 

Contact Us Now !