Information Security Audit

Performing a full-fledged information security audit can prove to be extremely tedious without professional expertise. This is primarily due to the scope of the audit being carried out and the evolving complexities of information systems.

At ITPSS, our Information Security Audit Team performs various audits to assess, safeguard and pre-empt threats and risks to an organisation's network and security.

All audits carried out are in accordance with the International Information Security Standard ISO 27001 (ISO17799 ISMS) - a cost-effeective and highly efficient independent assessment service. By adopting and complying with the ISO 27001, organisations are ensured that both corporate and customer information are adequately protected.

Our Information Security Audit service includes recommendations for customised solutions to minimise threats and risks on networks, in addition to providing detailed audit reports of the organisation's network infrastructure.

Logical Security Audit
Provides identification and assessments of a department's critical network assets, prioritized risks, threats and vulnerabilities. Internal netowrk vulnerability assessments are also carried out to zero-in on weaknesses present in existing internal network infrastructures.

Physical Security Audit
ITPSS will conduct risk assessments and perform physical security audits on the building infrastructure that houses the department's network e-government infrastructure.

Information Security Policy
Customised Information Security Policies will be drafted according to ISO 27001 implementation standards.
Departmental periodic security audits will be conducted annually.