Our audit methodology is based on 4i principle viz. Interact, Investigate, Interpret and Inform.

​

We strongly believe that auditing is an enabler for the auditee organization to move towards next step of improvement and not fault finding. We are determined to add value to the organization's information security posture by way of knowledge sharing. We follow transparency in the auditing methods and keep the auditee comfortable during audit for an effective auditing. We make our audits a pleasent experience to the auditee and make them fully committed in maintaining the controls and digital hygiene in their business on an ongoing basis. 

​

We offer auditing services on the following. 

• ISO 9001 - Quality Management Systems (QMS)

• ISO 10002 - Quality Management System - Customer Satisfaction

• ISO-20000 - IT Service Management System (ITSMS)

• ISO-27001 - Information Security Management System (ISMS)

• ISO-27017 - Cloud Information Security Management System (CISMS)

• ISO-27071 - Privacy Information Management System (PIMS)

• ISO-22301 - Business Continuity Management System (BCMS)

• ITGCM - IT General Controls Management 

• HIPAA - Health Insurance Portability and Accountability Act 

• SOC1 & SOC 2 - Service Organization's Controls (Type 1 and Type 2)

• Business Continuity Testing Audit

• Disaster Recovery Testing Audit

• IT Outsourcing Audits 

• Information Systems Compliance Audit (Organization specific)

• Regulatory Compliance audit for BFSI 

• Vulnerability Assessment and Penetration Testing by Cert-IN empanelled technical consultants.

​