Black Orro logo.
OneTouch Login
Contact
Cyber
Compliance & Assurance

Mitigate risks
and ensure compliance

From security assessments and compliance auditing to penetration and vulnerability testing, we provide a range of assurance and assessment services for cyber security and risk management.
Contact us

Compliance and Assurance services

With increased cyber threats to business continuity, revenue and customer relationships, maintaining compliance and providing customers with assurance is a critical component of cyber security.

We take an integrated approach that incorporates industry standards and frameworks essential for strengthening cyber security. This will safeguard both company and customer data and contribute to overall data protection.

Compliance and Controls Auditing

A comprehensive audit of your network infrastructure to detect any vulnerabilities or threats and help meet insurance and regulatory requirements. We align to a range of industry specific frameworks to audit your compliance and report any variance requiring remediation.

A risk assessment identifies risk in your environment, aligned to your specific business, industry and cyber security requirements. We will share a comprehensive and actionable list of recommendations to mitigate risks and close security gaps.

GRC reports provide insights that help organisations make informed decisions and create a strong governance framework. This includes an annual cyber security assessment and performance report based on specific roles, responsibilities and accountability across the organisation.

Our penetration testing capabilities include open-source intelligence (OSINT) and operations security (OPSEC) information gathering and black-box testing, which we use to gauge your network’s cyber defence capabilities. Where requested, we can retest identified vulnerabilities three months after your pentest to ensure all recommended patches have been applied and security gaps closed.

Our asset discovery and vulnerability capabilities include OT, IIoT and IoT device recognition, industrial protocols across BACNET, Profitnet and Modbus, Passive Agentless, and PLC and SCADA reporting. With this visibility, organisations can maintain an up-to-date inventory of all OT assets, including devices, sensors and controllers, and better understand the attack surface for effective implementation of security controls.

The NIST framework contains more than 100 best practice security actions across five critical cyber security functions to identify, protect, detect, respond, and recover from a cyber attack. Our NIST assessment report will enable your organisation to apply a common language and strategy for managing cyber security risk, which will help in prioritising and achieving your cyber security objectives.

ISO 27001 is a robust assessment that uses a collection of international standards to guide organisations to establish strong cyber security. This assessment details requirements for implementing, maintaining and improving an information security management system (ISMS) to increase security across information assets. Organisations that meet the standard’s requirements can be audited and certified by an accredited certification body.

CPS 234 is an information security law designed to ensure that regulated entities can withstand a cyber attack. The key objective is to reduce the risk of an attack while also securing information assets, including those managed by third parties. The regulation makes it clear that the Board is ultimately responsible for data security and requires timely reporting of any data breach or security incident.

Our difference

A comprehensive solution

Our team can help your organisation develop a framework to manage risk, remain compliant and increase your cyber security.

Strategy and culture

A cyber-first business strategy is best achieved by fostering a common culture that places cyber security at the forefront. We'll work to streamline operations around this shared culture, ensuring that security is ingrained in every aspect of the business.

Risk assessments

A cyber security risk assessment identifies and evaluates organisational vulnerabilities and threats. As demanded by any robust risk management program, the process is ongoing and circular in nature, to effectively manage both current and emerging threats.

A unified team

Unifying the team through shared policies, decisions and actions for compliance and security is instrumental in promoting a cohesive and effective cyber security strategy. With this collaborative approach you'll make better decisions and create a robust defence against cyber threats.

Gain back control of what's happening in your digital environment

Using visibility and intelligence systems, we’ll provide you with a complete overview of the cyber threat landscape.

Contact us

Successful client implementations

Explore our case studies showcasing real-world success.

View All
Cyber Security
Modern Infrastructure for Northern Minerals
Cyber Security
Students walking on a TAFE Queensland campus.
Upgrading TAFE Queensland’s Network Across 60 Locations
Cyber Security
A building bearing the logo of the University of the Sunshine Coast
Data Centre Upgrade for the University of Sunshine Coast
Cyber Security
A wide-angle view of Townsville City, Queensland.
Managed Cyber Security for Townsville City Council
Cyber Security
A low angle view of skyscrapers against a cloudy sky.
24×7 Security Operations & Management for Financial Services Client
Cyber Security
A group of towers against a blue sky as seen from below.
Strengthening a Top General Insurer’s Cyber Security
Cyber Security
City Beach
Strengthening City Beach’s Cyber Security Strategy
Cyber Security
Network Penetration Testing for a Financial Institution

The future feels like this.®

A secure network must balance data flow and access with robust security to keep systems and people safe. Our advanced networks deliver greater performance, flexibility and resilience with better bandwidth, more up-time and world-class security.

About us

Trusted Partner

Our customers don’t just trust us to keep them productive and secure today, but to prepare them for what’s next, to grow with them over time and to collaboratively shape their future.

Strategic Advisor

With deep expertise in multiple facets of technology, our customers rely on us to provide them with strategic advice and guidance, helping them make smart moves towards a secure future.

Solution Provider

Our versatile suite of skills enables us to tackle complex challenges for our customers, providing them with complete business solutions that draw from our vast pool of expertise and resources.

Our Technology Partners

Explore our Resources

View All
ValidPro®
post
The EOFY IT Procurement Checklist: 5 Ways to Maximise Your IT Budget Before June 30
Network
post
Navigating the Future of Enterprise Technology: Key Insights from Cisco ANZ CTO, Carl Solder
Cyber Security
post
Securing the Future: Preparing for the Quantum Threat in Cybersecurity 
Cyber Security
post
CyberCon 2024: Building Resilience Amidst Emerging Cyber Threats
Collaboration
post
Insights from Cisco Live Melbourne & Cisco Partner Summit
Critical Infrastructure
post
Bridging the Great Divide: The Benefits of IT and OT Convergence
Network
post
Unlocking IT’s black box with full-stack observability
Cyber Security
post
Consolidating Cyber Security Vendors: Simplify, Secure, and Strengthen Your Operations
Network
post
Mastering network control in a borderless world with Cloud NAC
Network
post
The gigabit game-changer: How full fibre broadband is catapulting businesses forward
Network
post
Reinventing Wi-Fi and LAN in an AI-mature world
Cyber Security
post
Cybersecurity lessons from the financial sector: Unpacking decades of defence
OneTouch Login