It is a very key & compliant aspect in any organization as on-going service as it tends to ensure Confidentiality, Integrity & Assurance (CIA) of customer data,
company data, customer asset, company asset as per various standard GDPR, PCI, PII, CDP policies. So, discussion will be on cyber security & its requirements in the
company.
Security program:
- - Security design review
- - Security assessment both automated & manual
- - Security control implementations
- - Security assurance
- - Security championship
- - Security policy creation
- - Security audit preparation
- - Security roadmap
- - Security vendor assessment
Security coverage:
- - Enterprise security
- - Corporate security
- - Vendor security
- - Data security
- - Product security engineering
- - Security vendor selection
- - Information security policy preparations
- - Database security
- - End-user security
- - API security
- - SOC/SIEM implementations
- - Will access the web application, mobile application, networks, database, file system, process & compliance setup, refinement in SDLC phase of development, third party
vendor management from security standpoint, Cloud testing, API testing in agreed process between us in open friendly manner with due diligence as per HIPPA, GDPR,
PCI-DSS, The India Digital Personal Data Protection Act 2023 (DPDPA) etc. standard guidelines.
Security operations:
- - On-call support
- - 24*7 support
- - Team management
- - Incident handling, escalation management, patch management etc.
