CYBERSECURITY CONSULTANCY comprising the following domains:
- Security Risk Assessment
- Security Policies, Standards, Guidelines, and Procedures Review
- Security Design
- ApplicationSecurity
- VulnerabilityAssessment
- System Security Acceptance Testing
The scope of works broadly covers the following:
- Identify and assess security risks in the company’s Info-Communication Technology and Smart Systems (“ICT&SS”); and
- Recommend treatment actions for security risks identified.
- Define the scope of the risk assessment for agreement.
- Identify risks scenarios which includes threats and vulnerabilities that are relevant to the company’s system.
- Develop risk scenarios based on a library of common risk events.
- Analyse the risks statements identified in terms of impact if the risks were realised and the likelihood that the risks will occur; and
- Evaluate the risk level for the risk scenario .
- Assess the identified risk statement and determine the residual risk based on the proposed risk treatment option.
