|
Tender description :
|
Tenders Are Invited for Design, implementation and operationalization of information security management system (isms).
The overall objective is to design, implement, operationalize, and support certification
readiness for a full ISMS consistent with recognized security standards and
frameworks
Specific objectives include:
1. Establish an enterprise-wide governance structure for information security.
2. Classify and protect information assets according to regulatory and risk-based
requirements.
3. Achieve compliance with national data protection and cybersecurity laws.
4. Develop a statement of applicability for ISMS in the Bank.
5. Design and implement controls based on risk and data classification.
6. Strengthen network security architecture and segmentation.
7. Develop or enhance security policies, guidelines, and operational procedures.
8. Implement a comprehensive Information Security risk management process.
9. Build capacity through training and awareness
|
