In business, the gap analysis process involves determining and documenting the variance between business requirements and current capabilities. At its core are two questions: "Where are we?" and "Where do we want to be?” An information security related gap analysis identifies information security gaps that may exist within your organisation by examining your organisation’s current information security posture against industry best practices or standards and regulations such as ISO27001 or PCI DSS. The gap analysis process consists of interviews and information gathering which helps provide your organisation with insight into areas which could be or need to be improved.
Furthermore, they will also provide valuable analysis; identifying methods, techniques and solutions for reducing that scope, for example, by isolating particular systems, users or processes. This exercise can evolve into an entire phase of the project and even into a dedicated scope reduction project.
For further information on our Gap Analysis service, please contact one of our Sales representatives by calling +27 46 622 6123 or by completing our Online Enquiry Form or Request a Call Back Form on our website.
Also, please feel free to visit our resource centre for helpful articles, wikis, videos, latest news and useful links related to industry topics and terminology.