GRC Updates (9-13 March 2020)
Progress
- Policy Development and Enforcement - Scheduled a meeting with IT to socialize the report
- Policy Development and Enforcement - Started to work on the new plan
- Security Awareness - Conducted phishing class-training. Recap and list of people who skipped the class https://docs.google.com/spreadsheets/d/1uwPHA3FhH2ACfhyoMdIw6Y21WHTLmW0Izx9_Tr79IlY/edit#gid=0
- Airy ISO 27001 - In the progress of GAP assessment.
- Traveloka ISO27001 - Contract finalized and signed. Preparing for Transfer Audit Meeting and then Surveillance Audit.
- Security assessment - Figma, Greenhouse, Paymentout are completed
- Compliance Readiness Check - In progress of compiling checklist
Plan
- Traveloka ISO 27001 - Audit Transfer Meeting and ISO Surveillance Audit
- Airy ISO 27001 - Discuss with Hilal about the MR and Plan.
- Security Awareness - Launch the Q1 security awareness
Problem
People
Misc