Virtual SOC environment for monitoring, logging, and incident response analysis.
Gap analysis against Annex A controls with remediation roadmap and ISMS documentation.
Structured risk register aligned with ISO 27005, covering threat identification and treatment.
Asset lifecycle management — classification, ownership, disposal — aligned to ISO 27001 A.8.
Acceptable Use, Access Control, Incident Response, and Business Continuity policies.
Internal audit using ISO 19011 guidelines with audit plans and nonconformity reports.
Open to IT/IS Auditor and GRC Analyst roles. If you're building a team that takes controls and governance seriously, let's talk.