What is a UIDAI Aadhaar Audit?
Unique Identification Authority of India has been set up by the government for developing, identifying, and setting up the necessary infrastructure to issue Aadhaar cards.
An organization can intend to become Authentication User Agency (AUA), to do the same it is required for the organization to be enrolled with UIDAI and comply with UIDAI guidelines.
After becoming AUA, organization will be able to provide E-KYC and Aadhaar based authentication. It will also be helpful in registering as KYC User Agency (KUA) for using Aadhaar e KYC service.
Applicability
- Authentication User Agency / KYC User Agency shall ensure that their security controls and practices are audited as per UIDAI guidelines to ensure UIDAI compliance by a certified information systems auditor at least annually.
- The audit report shall be submitted to UIDAI upon request.
Objective
- Meet regulatory compliance.
- Enhance data security for the information stored.
- Strengthen your digital technology and processes.
- Improve your cyber security preparedness and defense.
Approach
Our approach has been covered in 4 phases as mentioned below:
Phase 1: Audit Planning
Planning and preparation of the audit scope and objectives.
Phase 2: Risk Assessment and Business Process Analysis
Assessment, measuring, managing, and controlling IT-related risks, thus enhancing the reliability of processes and the entire information system.
Phase 3: Audit Performance (Compliance and System Review)
Assessment of controls over critical system platforms, network and physical components, IT infrastructure supporting relevant business processes.
Phase 4: Reporting
Report audit findings, conclusions, and recommendations of the audit in terms of conformance, non-conformance, and opportunities to improve.
Why CyberSRC®?
Established in January 2018, CyberSRC Consultancy offers the full machination of cyber security services ranging from threat intelligence, VMS to general advisory services in areas pertaining to Cyber security such as vulnerability attacks, compliance, and cyber security regulations, and laws. We are into system audits such as ISNP Audits, NBFC Audits, UCB Audits, PPI Audits, and SEBI Audits. We provide our solutions with better accountability. We are a certified assurance firm. We are an ISO 27001 certified organization, backed by a very diverse and dynamic team which have a combined experience.