DEVELOPMENT AND CUSTOMIZATION OF ICT RISK MANAGEMENT AND FRAMEWORK

• • Develop a strategy for digital resilience;

• • Governance – Integration of IT security requirements within the organization;

• • Development of risk management methodology and risk management plan;

• • Development of internal and external procedures and regulations;

TEST RESISTANCE DUE TO DIGITAL OPERATION

• • Define test strategy and scenarios;

• • Development of test methodologies and procedures (BCP-DRP);

• • Preparation of test plans, determination of scope;

• • Coordination of the testing process;

• • Development of test report structures;

• • Provide guidance for digital reporting to authorities;

ESTABLISH CONDITIONS FOR MONITORING THIRD-PARTY ICT RISKS

• • Development/ revision of ICT risk strategy and regulations;

• • Integration of third-party ICT risk procedures into the corporation’s risk management framework;

• • Assessment of compliance and third-party contracts;

• • Define exit strategy and transition plan;

SUPPORT THE REVISION OF THE ICT FRAMEWORK AND EVENT MANAGEMENT

Identification of the incidents, follow up and manage the results obtained, log analysis and support the incident management process;

Preparation of the plan review;

Coordination of revision process;

Record and evaluate the results obtained;

Identification of preventive and corrective measures;