INFORMATION SECURITY AUDIT ASSURANCE ADVISORY
Our Services
Get Your Organisation Certified
WE HELP YOU GET YOUR ORGANISATION CERTIFIED
ISO 27001:2022 Information Security
The ISO/IEC 27001 standards helps organizations keep information assets secure. Using this standard will help your organization manage the security of assets such as financial information, intellectual property, employee details, information entrusted to you by third parties and more.
ISO/IEC 27001 is the best-known standard providing requirements for an information security management system (ISMS).
PERSONAL DATA PROTECTION
Organisation which process data of living individuals within territory of India or foreign companies doing business in India are mandated to adhere to the Personal Data Protection regulations. This involves a host of controls to be implemented within the organisation.
We are trained and experienced in Implementing Personal Data Protection measures which includes but not limited to
- Data discovery
- Data Classification
- Impact Assessments
- Implement Controls to endure protection from loss, leakage
- Privacy Policy and a host of other Policies and Procedures
- Internal & External Audits
- Certification Services
DATA PROTECTION OFFICER SERVICES
Experienced and Senior DPOs are expensive as fulltime resources. Law gives provision for contract engagement for DPO rather than a full time employee.
ISAAA has excellent trained resources as ‘Data Protection Officers’, taking on the responsibility while keeping you in control.
- Takes Accountability of the DPO Role as per the requirements of Law
- Inform, advise, and issue recommendations to management regarding compliance with Privacy Data Protection laws including GDPR, and Company policies and guidelines with respect to data protection & information security.
- Serve in a leadership role and provide advice and guidance as a privacy consultant to management.
- Represent the organization in dealing with data Protection Commission Officers, including complaints and data breach notifications.
GENERAL DATA PROTECTION REGULATION (GDPR)
Who is GDPR this for?
1) Those companies that handle personal data of EU Nationals as a core business activity, such an BPOs wrking for EU based companes directlyor indirectly or companies who employs EU Nationals.
2) Companies that deal mainly with personal data of their employees or have lists of clients and customers based out of EU.
3) eCommerce companies that store personal data of EU Nationals as a part of going online businesses.
BUSINESS CONTINUITY MANAGEMENT
We Design and implemented Business Continuity Plans for Organizations.
Ensure business operations continue smoothly in the event of any disruption to business like natural calamities, fire, virus, or even unavailability of office business premises or even non-availability of key personnel.
Certified Training programs
Combined Lead Auditor Virtual Online Course (ISO/IEC 27001:2013 , ISO/IEC 20000-1:2018, ISO 22301:2019, ISO 9001:2015, ISO 45001: 2018, ISO 14001: 2015) ) will enable you to conduct effective audits in any auditing situation. It provides you with the skills to plan, conduct, lead, and report audits for first party (within your own organisation), second party (suppliers) and with third party organisation. It will provide you with the knowledge to understand and evaluate above standards.
Training Courses are Certified
Training Course Overview:The training, in addition to understanding the ISO Standards and conducting effective audits, it will assist you in understanding the interpersonal and communication skills required for Auditors and Audit team leaders. The course involves a high level of participant involvement through discussions, role plays and case studies that are used to reinforce the concepts and to provide practice in applying them.