Audit & Compliance 

Guiding and managing information security in your organisation is crucial. But you also would like to monitor the management system for information security and be able to account for it. Audit & Compliance enable this using methodology and techniques to implement and safeguard legislation and rules such as SOx and Basel II. As a result, your organisation is always 'in control'.

The core of the solution

Audit & Compliance enables you to specifically take into account the requirements of a particular standards framework, both before and during implementation of Information Security Governance.

Inter Access' method

In consultation with those responsible within your organisation, we determine the standards against which the solutions will eventually be tested. Our IT auditors and consultants – who have been certified by RE (Norea) and CISSP, among others – are familiar with the various audit standards frameworks and audit types. They frequently use the ISO-17799 Code for Information Security and Cobit. When you decide on a certification project, we can execute this based on ISO-27001 (information security) via BSI Management Systems.

The activities

Audit & Compliance consists of the following activities:

• Deciding together on the standards frameworks and the course to follow for compliance with this framework;
• Performing a gap analysis and setting up an implementation plan;
• Implementing the standards framework and executing an - often necessary - change project within the organisation;
• Performing (interim) reviews and audits on the standards framework;
• Optionally coaching the organisation during the certification project;
• Safeguarding the changes in the organisation.

Contact

• Contact form