Frequently asked questions
Why do I need to be compliant?
It helps you earn your customer's assurance.
How long does it take to get compliant?
It depends. On the scope of the framework, the architecture of your IT infrastructure and most importantly on the education of your team to maintain compliance on an ongoing basis. Anywhere between 2 to 10 months.
How much does it cost to be compliant?
It depends on the scope of the compliance. For e.g. it would be cheaper if its just limited to your AWS Cloud Infrastructure and more expensive if it has to cover multiple offices and locations. Anywhere between 10 to 20K.
Which compliance framework should I choose?
Workflow for Compliance Readiness
Conduct High-Level Gap Analysis
Review Findings, Prioritize based on criticality
Create Policies and Procedures
Conduct Risk Assessment and Penetration testing
Implement missing technical controls
Develop Incident Response Capabilities
Ensure Business Continuity and Disaster Recovery
Continuous Monitoring to maintain Compliance