Current efforts for digitization of services and the need for alignment to European regulations are triggers for local legislation in information security area. National control authorities, such as National Bank of Romania or Communications Minister, have adopted specific laws to regulate important security concerns of critical services and systems.
Compliance audits or conformity checks should be conducted by organizations offering e-services to customers, at the highest security standards. Organizations must obtain external independent verification of IT systems and operational processes; conformity status should be reported to regulators as a direct and independent statement of compliance or non-compliance with the audit criteria.
By choosing isec’s audit services organizations benefit from useful and accurate deliverables, with on time and non-intrusive, on site evaluation services and ready-to-address recommendations.