Newer threats to information infrastructures emerge each day, underlining the need for information security checks that are relentless and which evolve constantly.

This service provides an in-depth study that includes reviews of IT strategy, process, technology overlay, IT controls and data. It also includes the identification of vulnerabilities and putting the necessary control framework in place. The organisational issues relating to people and processes are examined to assess specific components, such as network applications, systems and the Internet. Without a clear assessment of the risk involved in deploying IT solutions, an organisation can easily lose data, money and reputation that could jeopardize its financial success. Increasingly, organisations are becoming liable to their customers, suppliers and shareholders, if their systems are not properly protected against known threats and even unforeseen and potential threats.

The service's approach to security audit is founded on generally accepted principles and is in compliance with the requirements prescribed by Information Systems Audit and Control Association and the International Standards Organisation.