We help you establish organisational context and document the VPDSF Manual to govern and manage compliance with the OVIC requirements.
We hold workshops with your key stakeholders to identify and document the full range of information assets (both electronic and hardcopy) to be included in your IAR.
We help you define the processes for the VPDSF risk assessment and treatment; and document an effective SRPA with pragmatic actionable insights.
Using the outcomes from risk assessment (SRPA), we assist you in systematically building your high-level and detailed PDSP.
We assist your Business Teams to grips with the 18 information security standards which comprise the VPDSS, and support them with VPDSS controls implementation.
We assist your IT team to develop a Security Capability Framework that ensures alignment between your organisational goals & objectives, and VPDSS controls and elements implementation.
We assist you in building criteria and indicators to monitor an effective security strategy to support and enable the business to achieve both performance and conformance outcomes from your VPDSF implementation.
We help you define and (if required, conduct) internal audit and / or penetration testing to make sure that your security processes are operating as per design.
We provide content to support your initial attestation against the VPDSS requirements. And, also assist you plan ongoing security and data protection improvement initiatives.
Our experts help you look beyond basic VPDSF implementation to build a robust Information Security Management Program which addresses the full range of information risks facing your organisation.