Our offering brings together the elements you need to deliver business-cyber risk reduction. Every customer starts in a different place – they have a history of making decisions and investments across different elements for different reasons.

To be valuable and viable we believe that a contemporary GRC solution needs to:

• enable the business to identify and prioritise risk reductions in an order that makes sense
• reduce the amount of time and effort required to progress toward a GRC objective by use of integration and automation rather than human effort
• emphasise continuous monitoring rather than periodic compliance audits
• provide flexible options as to how and when a business progresses toward framework-based certification and audit activity

gwi.digital’s ISO27001 Track Support solution is based on Drata’s GRC automation platform, the ISO 27001:2022 standard, and combined with a flexible services bundle.

Our offering includes:

• full Drata product licensing (MSSP tenancy, setup, ISO27001 framework, framework/policy/template library, continuous compliance automation via SaaS integration, employee engagement and education, risk management)
• trained, qualified and local AU-NZ support for Drata, with the backing of APAC and global vendor support teams
• Drata platform initial setup and configuration, working with your business and technology stakeholders to collate and integrate the necessary documentation and data
• an ISO27001 Baseline Assessment including controls status, maturity level, risk assessment and register
• an ISO27001 Track Improvement Plan which lays out the logic for business-risk driven prioritization and progression
• ad hoc support and advice
• monthly reviews to document and ensure progression
• a Quarterly Executive Summary suitable for a governance function (eg ELT)
• the option to proceed to audit, with a recommended audit partner who understands the Drata platform too

Together, these deliver you the changes you need to measurably reduce your business-cyber risk, and demonstrate that both inside and out.

Offered by gwi.digital, a proud Global Security & Compliance Acceleration (GSCA) Program Partner.