Compliance

We analyze business processes of the institutions in detail and determine the necessary points or missing points for the compliance of the processes with the related standards.

During the time of compliance consultancy, we make use of the standards and frameworks supporting the Law on Personal Data Protection including GDPR, BS 10012 Data Protection Personal Data Management System, COBIT 5, ISO 27001 Information Security Management System, ISO 22301 Business Continuity Management System.

 

Services provided by our Consultants are listed below;

Services Scope of Services
Business Continuity Management and Planning Consultancy It is a service provided for the purpose of stating the steps to be taken during the management and planning of Business Continuity Management System and providing sustainability.
Disaster Recovery Management and Planning (DRMP) Consulting Service based on the specific actions to be taken for Disaster Recovery Management. The purpose of the service is to provide support to planning and proactive steps
PCI-DSS Protection Card Data Consultancy Service to provide consultancy on card data protection
IT Internal Audit Supports IT to create internal control mechanisms
Corporate Information Security Design, Strategies and Policy Practices Consultancy It aims to set how information security can be embedded in the institutional structural culture; how to place the building blocks of information security strategies in the DNA of the corporate vision, and how to implement the most proper strategies, management and policies.

 

Trainings provided by our Consultants are listed below;

Trainings Scope of Training

IRCA Approved ISO 27001 (Information Security) Lead Auditor Training

IRCA approved lead auditor training. Lead Auditor is awarded by a certified instructor. At the end of the training IRCA examines participants together with providing courses, discussions, group works and sample case evaluations. Participants who successfully complete the exam are awarded with the internationally accepted ISO 27001: 2013 Lead Auditor Ctertificate.
ISO 27001 Lead Auditor Training IntelProbe approved lead auditor training. Lead Auditor is awarded by a certified instructor. At the end of the training IntelProbe examines participants together with providing courses, discussions, group works and sample case evaluations. Participants who successfully complete the exam are awarded with the ISO 27001: 2013 Lead Auditor Certificate valid for the institution’s internal audits.
ISO 27001 Internal Auditor Training Training for the operations of efficient internal audits pursuant to the ISO 19011 Internal and External Performance Evaluation standard. The subjects of ISO 27001: 2013 Information Security Management System; its internal auditor, characteristics of its auditors and planning of the audit, preparation of the list of questions and the realization of the audit is thought through applied and case study. Exams are held at the end of the training, and the successful participants are given an ISMS internal auditor certificate.
ISO 27001 Awareness Training Training to raise awareness about the institution’s information security within the scope of Information Security Management System
ISO 22301 (Business Continuity) Awareness Training A business continuity based training within the scope of Business Continuity Management System to raise awareness within the organization.
PCI-DSS (Card Data Protection) Awareness Training Technical card data protection training. On the first day of the training theoretical lecture is given and applied is on the second day.
ISO 20000 (Service Management) Awareness Training Awareness training towards the fundamentals and management of service management standard
BS 10012 (Protectionof Personal Data) Awareness Training Awareness training based on the Personal Data Protection Law, which involves the steps to be taken to protect personal data.
COBIT 5 (IT Governance) Training Integrated basic training including the COBIT framework and control items.
ISO 31000 (Risk Management) Awareness Training Awareness training based on the risk management steps and followingly the description of ISO 31000 framework.
IT Risk Management (IRM) Training IRM training that explains how IT risks should be managed in the light of international frameworks.
BCMP (Business Continuity Management and Planning) Training Aim of the training is to bring up Professional Business Continuity Specialists and explain the connection of Business Continuity Management to Crisis Management and Disaster Recovery also to explain its methodology with Best Practices - BS 25999. Describes the aspects of where it seperates from and where it shows similarity to Information Security (ISO 27001).
ISO 22301 - Business Continuity Management System
Protect the Assets During a Disaster
ISO 27001 - Information Security Management System
Turnkey ISO 27001
IT Risk Management
Minimize or Eliminate Risks
PCI-DSS
The Payment Card Industry Data Security Standard
Process Management & Strategic Planning
Aware of the Potential Threats
The Protection of Personal Data
GDPR Consulting
Top