The need of Cyber Security Assurance will be to assess compliance of cyber security posture based on the defined WB Cyber Security Framework, and assist stakeholders to enhance the same.
Cyber Security Assurance Framework addresses following major points:
- Scope of work, which shall in turn, depend on various factors
- Cyber security standard/framework to be used as reference for compliance
- Audit boundaries – inclusion/exclusion
- Audit methodology
- Empaneled auditing agency selection criteria and empanelment process
- How to qualify non conformance
- What constitutes observation, opportunity for improvement
- Format for corrective action/prevention action report
- Methodology for closing audit finding
- Verify closure
Initiatives taken by CS-CoE
Cyber Security Centre of Excellence 