Cybersecurity audit in accordance with National Cybersecurity System Act (NCSA – UoKSC)
We perform the audit based on cybersecurity standards.
In particular, a cybersecurity audit includes:
- fulfilling the obligations of Essential Services Operators and Digital Service Providers,
- fulfilment of obligations by entities performing public tasks,
- principles of incident management,
- ensuring the operational continuity of IT systems,
- vulnerability management method,
- division of tasks and responsibilities,
- physical and IT security measures used,
- fulfilling the obligation to assess the risk,
- application of ISO/IEC 27001, 22301, 27002, 27005 standards and NIST good practices,
- supervising cybersecurity documentation,
- rules for communicating the state of cybersecurity to relevant recipients in accordance with the Act.