Assessment of the current state of the customer's information systems, their security, and search for potential threats to information security.

The Audit includes:

• Analysing the state of information infrastructure objects, technological processes, upgrades and redundancy
• Analysing the level of protection of information infrasructure objects, access policy, and information security processes
• Assessment of compliance of the information protection system of the information infrastructure object with the requirements of the legislation of the Republic of Belarus in the field of information protection

Organisational and technical measures with documented confirmation of compliance of the information protection system with the requirements of legislation in the field of information protection, including:

• Verification of compliance with the developed documentation
• Vulnerability scanning of the customer's information infrastructure objects
• Execution of the technical report and test report
• Attestation of conformity

When designing the information protection system of the customer's information infrastructure objects, the following shall be developed:

• Information security policy
• Structural and logical schemes
• Terms of reference for the information security system
• Drafts of local legal acts and other organizational and administrative documents on issues of application of the information security system

Analysis of implemented information protection measures to assess the real level of protection of the organisation against possible threats, as well as to determine the degree of compliance with the requirements of the main regulatory and legal acts.