top of page

Information Security Management System
Gap Analysis 

laptop-3196481_1920 (1).jpg

Description

This service has been designed:

  • to provide the organisations which have to establish ISMS with a gap-analysis in order to develop a factual, informed, forward-looking plan regarding ISMS implementation. 

  • to support the organisations which have already established an ISMS to evaluate the maturity and effectiveness of their ISMS for the purpose of continuous improvement.

  • to give the organisations an overall picture of their ISMS performances

Anchor 1

Our Approach

AviaQuality's Gap Analysis aims at analyzing an organization's holistic approach to support its business and mission, by assessing the technology stack, processes and procedures in place, defensive mechanisms and their effectiveness, and by providing a contextualization of the exposure depending on the initial scope of the assessment (e.g. Regulatory-based assessment, Industry Standard-based assessment, Risk-based assessment, Best practices-based assessment, etc.).

 

Organizations are recommended to periodically (i.e. continuous compliance / continuous improvement principles) conduct such assessments within the context of the organization's objectives. As such, depending on the selected scope, this approach can be delivered as audit-like (i.e. leveraging checklists and/or well-known control frameworks), or risk-based .

​

A comprehensive cybersecurity risk assessment starts with answering questions like:

  • What are my organization's (mission) critical assets?

  • What are the most pertinent cyber threats faced by my organization?

  • What will the impact be if those potential threats come to fruition?

  • How does my organization align to aviation standards and regulatory requirements (e.g. IATA, EASA, ICAO, EUROCONTROL, etc.)?

  • How does my organization align to cybersecurity standards (e.g. NIST CSF, ISO27k, TY CYBER, etc.)?

  • What is the acceptable level of risk for my organization?

  • How can we best address identified gaps?

​

Customer's benefits

​

​​

Our assessment approach is modular, balanced, can easily be tailored to the customer's needs, and is easy and fast to spin-up given the large experience of the Team on aviation and cybersecurity domains.

For whom

This service is recommended to all Aviation and Aerospace organisations willing to establish or further develop a Safety Management System.

Anchor 2
Anchor 3

Does your company need our services? Message us today.

bottom of page