Data Localization is the act of storing citizens’ data within the country’s geographical boundaries to avoid any foreign accessibility. Data Localization can be referred to as a government policy for storing the user data collected within its jurisdiction on servers located within the country.
The Reserve Bank of India issued a directive vide circular DPSS.CO.OD.No 2785/06.08.005/2017-18 dated April 06, 2018, on ‘Storage of Payment System Data’ advising all system providers to ensure that, within six months, the entire data relating to payment systems operated by them is stored in a system only in India.
How it works?
We share audit charter with the auditee highlighting the roles and responsibilities of the audit function as well as the audit objectives.
We provide Auditee a DRL highlighting the required policies and further analysis of the same will be performed in line with the compliance.
Document Requirement List
Quantitative/Qualitative Risk Assessment will be conducted for every business process in scope and risk will be analyzed.
Identification & Analysis
Then the action points as well as risk response methodology will be suggested via GAP Assessment Report and an action plan will be asked from the auditee.
Then we conduct review again post-deployment of the mitigations.
The common vulnerabilities we tackled in the past
The most frequent application vulnerabilities are not very different from the OWASP top 10 list.
Blind XSS to Compromise Admin Panels
Sensitive Info Leakage on Public Repos
Remote Code Executions
Source Code Leakage
Broken Session Management
Broken Access Control
Cross-Site Request Forgery
Do you know?
Number of SARs Filed: 2022
Number of SARs Involving Financial Fraud: 2022
Number of SARs Involving Cybercrime: 2022
Want a quick
Detect & prevent attacks, before they succeed.
Stay ahead of the rapidly evolving threat landscape and keep your data protected without having to spend a fortune.