Global Security & Compliance Acceleration Partner Bundles

AWS Marketplace

Let us build and manage your world-class SOC 2 program so you can win more deals and grow your business!

AWS Marketplace

Let us build and manage your world-class SOC 2 program so you can win more deals and grow your business!

If you’re a cloud-based company, managing security/compliance can be a big ole burden! From managing audit periods to documenting monotonous policies or even just filling out those pesky Security Questionnaires, it’s no wonder companies rather hide from cybersecurity initiatives instead of embracing them!

Thankfully, you don’t have to kick this can down the road any longer with Eden Data + ALIGN by your side. We offer scalable security, compliance and data privacy services for any obstacle that customers, regulators, or Putin himself throw at you! Whether you need someone to build a security strategy and lead the program or simply need support to pass an upcoming audit with A-LIGN, we’ve got you covered.

AWS Marketplace

Looking to add Australia/New Zealand localised compliance frameworks like Essential Eight, AESCSF, ASD ISM, APRA CPS 234, or CertNZ Critical Controls to your Drata environment ? You've come to the right place.

If this is you …

We’ve found that a lot of our Australia and New Zealand customers need localised compliance framework support.

Don’t get us wrong: international compliance frameworks and industry standards like ISO 27001 and SOC 2 definitely have their place (and we support them!).

But localised compliance frameworks and standards are often required by legislation or statutory regulation. No matter what you think about them, they are hard to avoid.

Then we can help...

So we’ve built out a set of localised compliance frameworks and standards for Australia and New Zealand customers.

Our AU/NZ localised compliance frameworks for Drata include:

• ASD’s/ACSC’s Essential Eight
• Essential Eight for AWS Cloud
• Essential Eight for Microsoft 365
• AEMO’s AESCSF v2 Core
• AEMO’s AESCSF v2 Lite
• APRA’s CPS 234/235
• ASD’s ISM & IRAP
• CERT NZ’s Critical Controls

These localised compliance frameworks can be installed within the Drata platform and benefit from automated-integrated-continuous compliance.

gwi.digital offers services to support localised framework adoption, compliance posture improvement.

And if you need it, we partner with several companies to provide independent attestation, including with organizations such as AssuranceLab and A-Lign.

AWS Marketplace

gwi.digital’s Essential Eight Assessment and Improvement Support solution is based on Drata’s GRC automation platform, the ACSC's Essential Eight Framework, and combined with a flexible services bundle, and optional independent attestation by AssuranceLab.

Our offering includes:

• Full Drata product licensing (tenancy, setup, framework, policy/template library, continuous compliance automation, employee engagement and education, risk management) and local AU-NZ support
• Essential Eight Baseline Assessment (including controls status, maturity level, risk assessment and register, improvement plan)
• Quarterly Checkins to review and document progress (with an option for Monthly Checkins)
• Quarterly Executive Summary

Take immediate and practical steps to ensuring you've got the basics covered with the Essential Eight offer from gwi.digital.

AWS Marketplace

Do you know how much GenAI has been adopted in your business, embedded in applications and services you have already selected ? Worried that credit card AI is exposing your business to unquantified data security risks ? Struggling to cut through marketing hype to understand what really happens to your data in a GenAI system ? Our GenAI Data Security & Risk Assessment will bring you clarity and confidence.

AWS Marketplace

Need to implement data governance across your cloud assets ? Talk to us about how we can ensure that the right people and services can access the right data in the right way at the right time.

If this is you ....

Many customers have a data governance model that consists of strategy and policy. But to realise the benefits of data governance, this needs model needs to be implemented via one or more tools on data holdings across the cloud.

Then we can help ...

gwi.digital are experts this kind of work - providing services which using both AWS native tooling such as IAM, Control Tower, DataZone and AWS ISV partner solutions such as Microsoft Purview, Databricks Data Intelligence Platform, or Zeenea Data Discovery Platform to deliver data access and assurance/compliance outcomes.

AWS Marketplace

Australia’s Essential Eight (E8) framework is the cornerstone cybersecurity artefact in for the public sector, and its reach extends through all levels of government (federal, state, local) and into ICT supply chains. If you’re an Australian public sector organization or a public sector ICT supplier that uses AWS to store confidential data, process sensitive transactions, and build critical services, then its very likely you’ll need to come up with an Essential Eight story.

AWS Marketplace

A Privacy Impact Assessment (PIA) is an integral part of the project planning process. It identifies the impact that a project may have on the privacy of individuals and sets out recommendations for managing, minimising, or eliminating that impact. Privacy issues that are not adequately addressed can result in harm to customers and stakeholders (e.g. financial or reputational damage), non-compliance with privacy laws, loss of credibility and trust in your organisation, and undermine your project’s success.

GWI adopts the internationally recognised Privacy by Design (PbD) framework to help our clients build good privacy practices into the design and development of systems, processes, and decision-making that involve the use or disclosure of personal information.

PbD enables a shift from a compliance/reactive approach to privacy management, to a proactive and preventative approach, minimising information systems’ privacy risks through technical and governance controls, ultimately supporting increased public trust. It ensures that privacy is considered at all stages of an initiative. GWI works across all Australian jurisdictions and is familiar with the guidance provided by each government’s guidance and templates.

AWS Marketplace

XccelerATOr +A-LIGN FedRAMP Acceleration Bundle combines the services of two proven 3PAOs through streamlined procurement via AWS Marketplace to provide the fastest path to selling your cloud service to the Federal market. XccelerATOr + A-LIGN ATO Bundle combines InfusionPoints’ years of experience with military grade security controls with AWS best-practices to provide a pre-engineered, and pre-documented landing zone along with our Cloud Managed Services, and 24/7 Security Operations, followed by a 3PAO assessment services from A-LIGN, a top 3PAO on the FedRAMP marketplace with a proven track record with CSPs.

AWS Marketplace

InfusionPoints + A-LIGN CMMC Bundle combines the expertise of two proven firms through streamlined procurement via AWS Marketplace to provide the fastest path to complying with DFARS 7012 and CMMC. InfusionPoints + A-LIGN CMMC Bundle combines InfusionPoints’ years of experience with military grade security controls with AWS best-practices to provide a pre-engineered, and pre-documented Secure Enclave (landing zone) along with our Cloud Managed Services, and 24/7 US Citizen/US Soil Security Operations, followed by C3PAO assessment services from A-LIGN, a top audit firm and C3PAO with a proven track record in the CMMC space.

AWS Marketplace

Establish a sustainable enterprise-grade SOC 1, SOC 2, or SOC 3 program in this bundled offering that brings the leader in quality-focused Cybersecurity assessments (Schellman) and the custom-tailored cybersecurity program implementation (RISCPoint). Eliminate complexity through simplified scoping, transparent pricing, and ease of procurement bringing you everything you need to achieve SOC compliance in one streamlined AWS marketplace product. The Schellman, RISCPoint partnership brings you the end-to-end solution in one transaction.