“Adwisery” has started providing Chief Information Security Officer (CISO) services to a company in the chemical industry sector

The following activities will be carried out during the project:

• Gap Analysis;
• Preparation of the cybersecurity policy for network and information systems and the procedures governing its implementation;
• Preparation of business continuity testing plans;
• Once a year, an assessment of compliance with the requirements of the Law on Cybersecurity of the Republic of Lithuania and the subordinate legal acts implementing it will be carried out, and a Compliance Assessment Report and a Non-Compliance Remediation Plan will be prepared;
• Once a year, an information security risk assessment will be carried out, and a Risk Assessment Report and a Risk Management Measures Plan will be prepared, with the results submitted to KSIS;
• Once a year, training will be conducted for the organization’s employees on information cybersecurity management and social engineering;
• Once a year, business continuity plan testing exercises will be carried out, a Business Continuity Plan Testing Exercise Report will be prepared, and the results will be submitted to KSIS;
• Preparation of cybersecurity requirements for the supply chain and ensuring their implementation;
• Planned and unplanned assessments of cybersecurity management processes are carried out;
• Preparation and implementation of external and internal network and computerized workplace testing within the organization, including drafting the technical specification for service procurement, and participation in monitoring the service delivery process and results;
• Consulting services are provided to the organization’s management and employees on information and cybersecurity management matters;
• Assistance in managing information and cybersecurity incidents, and, when necessary, preparation of notifications to the National Cyber Security Centre (NKSC) regarding major cyber incidents, as well as incident management reports.;

Purpose:

• To properly manage cybersecurity and ensure compliance with the Law on Cybersecurity of the Republic of Lithuania and the subordinate legal acts regulating its implementation.

Benefits:

• Continuous strengthening and management of cybersecurity, reducing the risk of cyber incidents, increasing the organization’s resilience, and ensuring compliance with legal requirements.

Estimated duration of initial service:

Services description links:

• Preparation for Directive (EU) 2022/2555 (NIS 2) of the European Parliament and the Council services
• Services of Chief Information Security and Cyber Security Officer