Cyber Security Audit

Project Overview:

Undertook a significant cybersecurity audit project, focusing on enhancing overall cybersecurity measures in areas like device and data security, access control, network security, and customer data protection. The aim was to evaluate and improve cybersecurity practices in a comprehensive yet tailored manner for a client in the technology solutions sector.

Key Terms/Technology Used:

  • Cybersecurity best practices and standards (CIS Controls and NIST framework).
  • Analysis of software and hardware assets.
  • Password management and security protocols, including hypervisor-based compatibility and feature testing for password management solutions.

Methodology:

  • Collaborated closely with management to identify key focus areas.
  • Engaged in in-depth research to align cybersecurity best practices with the organization’s unique operational context.
  • Emphasized pragmatic and feasible cybersecurity solutions suitable for the organization’s scale and resources.

Challenges Faced:

  • Adapting best practices to fit a unique and diverse operational structure.
  • Striking a balance between optimal cybersecurity measures and the practical limitations of a smaller enterprise.
  • Utilizing a variety of resources to comprehensively understand and apply relevant cybersecurity frameworks.

Results:

  • Delivered a baseline assessment highlighting key areas for cybersecurity enhancement.
  • Proposed a series of structured recommendations, focusing on practicality and feasibility, with an emphasis on immediate and long-term cybersecurity improvements.
  • Recommendations were crafted with careful consideration of the organization’s specific needs, operational framework, and resource limitations, ensuring actionable and realistic advice.