Menu

ADVISORY SOLUTIONS

Brightwyze provides practical advisory solutions which solve business problems and mitigate cybersecurity and technology risks faced by organisations. BrightWyze advisory services provide a holistic and timeless solutions.

IT Auditing

IT General Controls Reviews 

IT General Controls, or ITGC are a set of policies, procedures, and technical controls that determine how a business’s systems operate to ensure the reliability of information systems. The audit evaluates current policies, standards, procedures, and controls in place used to determine access different data and systems, the effectiveness of the IT Operations processes in place.

Focus areas of ITGC reviews include the following:

  • • Access to programs and data
  • • Change management controls
  • • System lifecycle controls
  • • Computer operation controls
  • • Incident management controls
  • • Backup and recovery controls
  • • Physical data center security controls

Application Controls
We will perform an audit on the business applications to ensure data accuracy, completeness, and validity. Application controls auditing will include automated business controls, application interfaces and reports generated by the business systems.

Project Advisory Reviews
Our project assurance approach focuses on identifying areas of improvement and identifying project related risks proactively and maximise your confidence of successful delivery

Cybersecurity Policies Review
We review your cybersecurity policies, processes, and standards to ensure alignment with business needs, best industry practices, emerging technologies, and regulatory requirements.

Cybersecurity controls implementation
We work with your organisation to implement cybersecurity controls that are unique to your organisation, based on internationally recognised frameworks such as:

  • • NIST cybersecurity framework
  • • ISO 27001/2 standard
  • • COBIT
  • • King iv

Cybersecurity Maturity Assessments
We perform readiness assessments and / maturity assessments for the following cyber security frameworks to identify gaps and provide our clients with actionable recommendations, prior to certification and / regulatory audits. Same of the frameworks that we use include the following:

  • • SWIFT Framework
  • • ISO 27001/2
  • • PCI
  • • NIST
  • • CIS
  • • SOX

 

BrightWyze

Cybersecurity Awareness

 

Research shows that Cyber-attacks are as a result in lack of awareness. We design and facilitate cyber security awareness programmes for your business, design metrics for measuring effectiveness of cyber security awareness campaigns and provide recommendations for improving the cyber security culture.

How It Works

We design the cybersecurity awareness programme.
1
We roll-out cybersecurity awareness campaigns/training to all the users
2
We analyse the results of cybersecurity awareness campaigns training
3
We provide recommendations on how to improve the cybersecurity culture.
4

Why Cybersecurity Awareness with BrightWyze?

  • • Strong human firewall to mitigate cyber-attacks.
  • • Improved cybersecurity hygiene practices.
  • • Practical recommendations to improve cybersecurity controls.
  • • Improved response times in the event of cyber-attacks.
  • • Mimimise cyber-attack events and losses.

IT Governance

We perform IT Governance audits which focuses on strategic alignment, third party performance management, value delivery and risk management. Our approach ensures effective and efficient use of IT resources in enabling an organization to achieve its goals. We focus on evaluating and providing recommendations on the process by which your organisation evaluate, select, prioritise, and fund competing IT investments

IT Strategy Review

We review IT strategy and leverage best-practices methodology and industry expertise. Our approach ensures that IT Strategy is aligned to business strategy, stakeholder satisfaction and overall operational excellence.

Technology Policies Review

We review your Technology policies, processes, and standards to ensure alignment with business needs, best industry practices, emerging technologies, and regulatory requirements

Third Party Service Provider Management

Take the stress out of managing third party service providers. We help organisations manage third parties and evaluate their performance. Our service offering includes:

  • • Expert Advisory services in tender proposal Evaluation
  • • Reviewing Service Level Agreements.
  • • Designing Key Performance Metrics
  • • Third Party delivery monitoring
  • • Third party Risk Management

Findings Remediation Programme

 

Achieve your organisation’s goals, focus on building new products and services and BrightWyze will manage the finings raised by the assurance providers and ensure that they are resolved to mitigate the risks identified.

BrightWyze

How it works

ou provide your findings register to us reflecting the issues raised by different assurance providers.
1
We work with stakeholders to accelerate implementation of remedial actions.
2
We provide progress reports regularly
3
We continuously update the findings register to reflect the status of all the findings
4

Why a findings remediation programme with Brightwyze?

  • • Avoid high risk exposure caused by high number of open findings.
  • • Accurate reporting of the number of open and overdue findings.
  • • Resource optimisation when you focus on business-critical issues and new products and services
  • HOW CAN WE HELP YOU?
Please enable JavaScript in your browser to complete this form.

Don’t Hesitate To Contact Us

Thank you for considering Brightwyze as your partner in enhancing cyber security skills and safeguarding your organization’s valuable assets. We are dedicated to providing top-notch Training and Advisory Solutions to individuals and organizations in Sandton, Johannesburg, and beyond. Your inquiries and feedback are important to us, and we look forward to assisting you in the best possible way.

Call Any Time

071 864 6055 \ 083 411 0875