We help you prepare the Security Risk Assessment and Audit (SRAA)
SRAA is a Hong Kong Government (HKSARG) defined terminology, covering Security Risk Assessment (SRA) and Security Audit (SA). SRAA consists of a full set of policy, standards and guidelines in Cyber Security assurance. HKSARG Departments and Government Funded Organizations (NGO / NPO) are required to observe.
IT Security Risk Assessment (SRA) is the process to identify, analyse and evaluate the security risks, and determine the mitigation measures to reduce the risks to an acceptable level.
IT Security Audit (SA) is the review process to ensure (i) security measures and configurations comply with IT security policies, standards, and requirements; (ii) IT security treatment recommendations are properly implemented, and risk is appropriately mitigated