Gap Assessment
     

Many businesses face security and privacy compliance requirements. Understanding the path to compliance can be difficult and a lack of clarity can lead to controls that are too expensive, overbearing or on the opposite end of the spectrum, simply not adequate or reasonable. These gaps may cause minor inconveniences or significant damages and they can result in severe financial penalties, loss of public trust and/or damage to corporate reputation.

 

A Gap Assessment provides the basic insight necessary to formulate a reasonable action plan and path to compliance, while considering the unique organization environment, including people, process, and technology. Because compliance is not optional, understanding gaps, documenting, and communicating them, and building a corrective action plan should be performed to an adequate and reasonable level.

 

A Gap Assessment will provide a comprehensive evaluation of your compliance and a plan for effectively mitigating those gaps.

 

Securadin’s objectives for a Gap Assessment include the following:

 

• Initiate a Compliance Program

• Perform a current state analysis

• Develop a corrective action plan

• Prepare for risk-based prioritization of control implementation

• Identify and document gaps in accordance with applicable laws and regulations

 

A Gap Assessment from Securadin includes but not limited to the following regulations and standards:

​

• ISO/IEC 27001:2022

• General Data Protection Regulation

• NIST SP 800-53 security and Privacy Controls for Federal Information Systems

​

​

​

​