Information and Cybersecurity Audit

We tailor the information security audit to the client’s needs – from a comprehensive review of all areas to a targeted audit based on specific requirements. We use a combination of interviews with key personnel, document analysis, records review, and verification of implemented security measures in practice.

The result of the audit is a clearly defined overview of weaknesses in information security, including a description of potential risks and recommendations for corrective actions.

The audit usually takes the form of sampling – randomly selected parts of the audited areas are evaluated. Therefore, it is important to understand that the audit is not a 100% inspection and some discrepancies or deficiencies may remain undetected. If a full environment check is the goal, we recommend performing an in-depth information security analysis.

Auditing Activities

  • We have been engaged in auditing activities in the field of information security since the establishment of our company. Our professional competence is confirmed by active collaboration with the internationally recognized certification authority DNV.
  • Under the banner of ALEF NULA, a.s., we have long conducted cybersecurity audits according to Czech Act No. 181/2014 Coll. Our services are used by ministries as well as key players in the public and private sectors.
  • We are among the few in Slovakia holding accreditation for performing cybersecurity audits according to Act No. 69/2018 Coll., granted by the Competence and Certification Center for Cybersecurity (Reg. No. 695/O-024). Our accreditation guarantees the highest level of expertise and credibility.
  • We perform cybersecurity audits in accordance with the requirements of both Slovak and Czech cybersecurity laws.
  • We carry out GDPR audits according to the requirements of Slovak and Czech data protection laws.
  • We provide security audits, independent of ISO standards or legislative requirements, which can include information security analysis (e.g., current state assessment and proposal of security measures). Our services include:
    • Audits of security processes focused on organizational and procedural security
    • Technical audits – thorough examination of security elements in cooperation with ALEF NULA, a.s.
    • Specific audits tailored to client requirements
    • Supplier audits – audits of third parties
  • We provide ISO 27001 information security certification audits, conducted by our partner certification company DNV.