A one-time cost, onsite and off site service to understand the security & data exposure scope of your company, your affiliated companies and suppliers. Aligned to your business aspirations and mandatory GRC requirements. This service will cover the following areas, subject to the pre-requisite of having the necessary documentation relating to the following: 

• Review the scope of the environment  

• Data ingress points  

• Data outbound points  

• Data processors  

• Review the data security policies, processes and procedures  

• Review the customer rights obligations in place  

• Review of the high-level topology of the environment and mapped data flows to identify;  

• Applications and systems used  

• Compliance governance structure – defined roles and responsibilities  

• Review suppliers and processors that are in scope  

• Advise and report on the GAPS and the remediation steps required to meet Data Security compliance and regulations 

• Review suppliers and processors that are in scope  

• Advise and report on the GAPS, Risks and the remediation steps required to meet Data Security compliance and regulations 

• High level Delivery Plan.