Audit & Assurance

Independent audits that stand up to scrutiny

Evidence-driven assessments across global standards and India's sector-specific mandates — delivered by specialists, mapped to the exact requirement your regulators and customers expect.

💳

PCI DSS Audit

Independent PCI DSS v4.0.1 assessment & ASV readiness

QSA-aligned PCI DSS audits for merchants and service providers — gap assessment, RoC/SAQ validation, ASV scan and penetration-test readiness.

View audit →

🛡️

SOC Audit (1 & 2, Type 1 & 2)

Readiness & evidence for SOC 1/2, Type 1 & Type 2

End-to-end SOC audit support across SOC 1 Type 1, SOC 1 Type 2, SOC 2 Type 1 and SOC 2 Type 2 — readiness, controls and CPA-firm coordination.

View audit →

🔐

Data Privacy Audit

DPDPA, GDPR, HIPAA & CPRA compliance audits

Independent privacy audits across DPDPA, GDPR, HIPAA and CPRA — data mapping, rights workflows, DPIAs, vendor and transfer governance.

View audit →

📜

ISO Audit

Internal & certification-readiness audits across ISO standards

Internal audits and certification-readiness reviews across ISO 27001, 27701, 22301, 42001, 9001, 20000-1 and more.

View audit →

☁️

Cloud Security Audit

Benchmark-aligned AWS, Azure & GCP audits

Configuration and posture audits across AWS, Azure and GCP against CIS Benchmarks, NIST and well-architected security pillars.

View audit →

🗂️

Data Governance Audit

Maturity & control audit for your data estate

Assess data governance maturity — ownership, classification, quality, lineage, retention and stewardship across your data estate.

View audit →

🤖

AI Security Audit

Audit AI governance & model security (EU AI Act, RBI)

Audit AI governance, model risk and security — EU AI Act obligations and RBI expectations for regulated entities, plus model-specific threat testing.

View audit →

🪪

Aadhaar Audit (AUA/KUA)

UIDAI compliance for AUA, KUA, Sub-AUA & Sub-KUA

UIDAI-aligned Aadhaar audits for Authentication and e-KYC User Agencies and their sub-agencies — AUA, KUA, Sub-AUA and Sub-KUA.

View audit →

🔗

Third-Party Risk Management (TPRM)

Vendor & supply-chain risk audits and program build

Stand up or audit your TPRM program — vendor tiering, due-diligence assessments, contractual controls and continuous third-party monitoring.

View audit →

🏦

RBI Master Direction Audit

RBI IT, cyber & outsourcing master direction compliance

Audit and uplift compliance with RBI Master Directions on IT governance, information security, cyber resilience and outsourcing for banks, NBFCs and PSOs.

View audit →

📈

SEBI Cyber Security Framework

SEBI CSCRF compliance for regulated entities

Achieve compliance with SEBI's Cybersecurity and Cyber Resilience Framework (CSCRF) — governance, controls, VAPT, SOC monitoring and reporting.

View audit →

🛟

IRDAI Cyber Security Framework

IRDAI information & cyber security compliance for insurers

Compliance with the IRDAI Information and Cyber Security Framework for insurers and intermediaries — governance, controls, assurance audits and reporting.

View audit →

Need an independent audit?

Tell us your framework and timeline — we'll scope it and get you assessment-ready.

Talk to an expert Browse services