Risk and Compliance Services


SEBI Cyber Security Audit

SEBI circular on cybersecurity and cyber resilience framework for regulated entities requires mandatory cyber security and resilience audits. With the recent amendments in May and June 2022, such audits are to be done twice a year. SEBI also requires entities to identify critical assets in their…


SAMA Cyber Security Framework - Principle based.

As per SAMA Cyberecurity framework, the objective of the Framework is as follows:
1. To create a common approach for addressing cyber security within the Member Organizations.
2. To achieve an appropriate maturity level of cyber security controls within the Member Organizations.…


PCI DSS Compliance

The Payment Card Industry Data Security Standard (PCI DSS) is a set of security requirements endorsed by the five most globally influential payment brands: Visa, Mastercard, JCB, Discover and American Express. It is a mandatory annual requirement for any business (merchant or service provider)…


C-TPAT Audits

The Customs-Trade Partnership Against Terrorism (C-TPAT) is a supply chain security audit that is driven by the US Customs and Border Protection. It helps improve the security of those companies that are involved in the supply chain with respect to transactions with USA. IT helps to mitigate…


Webinar- ISAE 3402

The widespread use of outsourcing requires Service Organisations to better manage their risks associated with outsourced services. More specifically, the clients of Service Organisation i.e. User Organisations require a degree of assurance on well-established Internal Control Framework of…


Cybersecurity Maturity Model Certification (CMMC)

If you have never heard of the words CMMC, don't worry. You are not alone. It is a recent regulation and it is not yet fully in force. But, if will gain momentum in the information security and data privacy domain like no other regulation.

Current Updates

CMMC is not a…


Personal Data Protection Services (PDP) - India

Overview of the Indian PDP Bill (draft) 2018

The Indian PDP Bill (draft) 2018 is one of the most momentous steps towards safeguarding the personal data of citizens. The Bill gives citizens a say in protecting their data held by companies for various purposes and prevents companies…


SSPA Assessment - Microsoft DPR Assessments

The Supplier Security and Privacy Assurance (SSPA) and Data Protection Requirement (DPR) previously known as the Vendor Privacy Assurance Program is an assessment for Microsoft suppliers/vendors who process their data on their behalf. SSPA DPR assessment is an initiative taken by Microsoft for…


21 CFR Part 11 Consulting Services

Implementing a CFR 21 part 11 software /system helps you to achieve compliance with FDA regulation and also provide you inroads to more clients who can trust your system.

Riskpro's 21 CFR Part 11 services include gap assessment, reviewing and validating your software/systems for…


Riskpro's Service Verticals

In today's world, risks are not few. An enterprise faces various risks and challenges and is subject to uncertainties and negative impacts from these risks. Managing risks is your key to untapped opportunities that till now were capitalized only when risk factors moved in your favor. Riskpro…


SSAE 18 - SOC Audit and Attestation Services

Riskpro's unique approach to SSAE engagement is sustained value addition to your business. Our readiness services enable you to remediate the control gaps in an efficient manner that not only help to get SSAE 18 reports signed, but also improve productivity and efficiency in the business. That…