Certification &
Accreditation
CANDA specialises in helping organisations manage C&A requirements and responsibilities under the NZISM standard.
Our Services
Certification &
ICT Security
Consultancy
The CANDA team has a wealth of industry knowledge and experience which we can bring together, to help resolve your security and risk issues.
Cyber
Security
Cyber security planning is essential because you will be the target of a breach at some time in the future. The expert team at CANDA can help.
Cloud
Security
CANDA’s expert cloud security team help with design, configuration assurance and C&A and governance concerns.
GenAI
In today’s online marketplace, the prevalence of AI generated content, and processing, is increasing all the time. If your organisation is venturing into the adoption of AI, then security is a key issue for you to consider. It is vital to your organisation’s privacy, data security and compliance with the appropriate regulatory requirements and privacy standards and laws, and ensuring that your data and systems remain secure.
Risk
Assessment
CANDA works with ICT businesses in NZ, creating successful C&A engagement with an accurate Risk Assessment & Statement of Applicability for your systems.
Controls Validation
CVP/CVA
Controls Validation (Planning & Audit) are key components of the C&A process. These allow the assessor to validate the controls in place and their effectiveness in remediating risks.
Remediation
Management
Good governance over ICT systems demands that security planning and remediation items are all managed effectively. Our team of experienced professionals help manage this.
System Security
Plan
A system security plan describes an agency’s implementation and operation of system controls, alongside a planned approach to investment, testing, and more.
Application
Security
The team at CANDA have experience in application security testing, secure code development, agile deployment, numerous DevOps technologies.
