Assurance services
Gain confidence in the effectiveness of your security program. The effectiveness of security controls and compliance with your policies and standards should be regularly tested. stratsec provides professionally qualified ICT security auditors to meet client assurance needs.
stratsec provides a range of assurance services for an enterprise:
- DSD Infosec Registered Assessor Program audits
- ICT security audit of ICT systems and enterprise ICT security programs against a range of national and international standards
- Vulnerability assessment and penetration testing
- Computer forensics and investigation
- Evaluation of ICT security products against security functional requirements
We have applied knowledge and experience in security and security-related standards including:
- The Australian Government ICT Security Manual (ACSI 33)
- The Australian Government Protective Security Manual (PSM)
- The Australian Privacy Act
- ISO 17799 Code of Practice for Information Security Management
- ISO 27001 Part 2 Information Security Management
- ISO 15408 Common Criteria for IT Security Evaluation
- The Health Insurance Portability and Accountability Act
- Sabanes-Oxley