Roles, Duties, and Responsibilities of the Board of Directors

Governance Structure (Three Lines of Defense)

Policies related to the governance of information technology risks (IT Risk Management Policy, IT Security Policy)

Risk assessment and project prioritization

Information Technology Project Management Framework

Information technology project supervision

IT Security Policy

IT Security Organization

Human Resource Security

Asset Management

Access Control

Cryptography

Physical and Environmental Security

1st & 2nd Line of Defense (Risk Owners & Risk Functions)

IT Risk Management Framework, Process, Criteria

Risk Assessment (Identification, Analysis, Evaluation)

Risk Treatment, Risk Monitoring & Review, Risk Reporting

2nd Line of Defense

Supervise compliance with laws and regulations about information technology (IT Compliance).

3rd Line of Defense

Roles, duties, plans, the scope of the audit

Information Technology Auditing

outsourcing of specialists, Reporting the results of the audit

Monitoring and Reporting of Key Issues

Cybersecurity Framework

Identification, Protection, Detection, Response, Recovery

Cyber ​​Risk Assessment

Cyber ​​Threat Action Status Assessment

Cyber ​​Threat Surveillance and proceed according to the Cyber ​​Act

Insurance companies must report to the office. Suppose a company's critical information technology is attacked or compromised by a cyber threat. In that case, It is a problem or event that the company must report to the top management of the company.

AlphaSec helps companies follow the announcement by consulting and sample control measures documents following the requirements of the statement.