TRANSERVE TECHNOLOGIES PVT LTD

Management Review Minutes Release Date: 01.11.2022

S. No Version Date of Change Revision History

1 1.0 01.11.2022 First Release

Prepared By: PBC Approved By: CISO

 Minutes Of Meeting

Venue : Conference Room

Date, Start Time and End time : 07-12-2022 11.00 am to 12.30 pm

Participants Name: Core Team & CEO

Absentees : None

Agenda of the Meeting

Management review Meeting for ISMS
1. Feedback from interested parties

2. Review status of last ISMS Audit findings

3. Techniques, products or procedures which could be used in the organisation to improve the ISMS perfo
4. Vulnerabilities or threat not adequately addressed in the risk assesment / Risks above the acceptable ris
5. Status of CAPA
6. Review Last MR action points
7. Review of any changes that could affect the ISMS
8. Any recommendations for improvement
Results from effectiveness measurement

Summary of Discussion

1 Review status of last ISMS Audit findings : reviewed

NCs in internal ISMS Audit: The internal audit was condcted & there are 17 NC's raised in internal Audit. Co
2
the non conformance.

Techniques, products or procedures which could be used in the organisation to improve the ISMS perform
3 Implement internal security audit as part of Software Development Process in introduced to enhance the i
compliance from the project side.

Discuss about information security events and incidents : <<The incident register was reviewed during the
4
security incidents raised since Jan 2019. The incidents are closed with RCA. Security events were also discu
 Vulnerabilities or threat not adequately addressed in the risk assessment / Risks above the acceptance val
5
Overall there are 3 Risk which are above 9, the accepted value, which management has accepted the risk.

Status of CAPA: Correction has been taken for all the NC's, Corrective action Preventive Action has been im
6
are still open.

Review Last MRM action points:

7
NA

8 Resource needs: 1) Server for Development Team

Review of any changes that could affect the ISMS (Internal & External Issues):
9
No such changes identified.

Any recommendations for improvement :

10
Proper monitoring of the ISMS controls and review to be performed by the ISMS Core team

Results from effectiveness measurement :

11 The IS objectives are reviewed. All are within the target.
The control monitoring sheet reviewed during the meeting.

Action Plan
Sr.No Action Items

1 Software Development Process need to be updated

1) Server for Development Team, 2) Development system for the new joinee
2
3 Recruitment of Full stack developer
ation to improve the ISMS performance and effectiveness
t / Risks above the acceptable risk value

9.

e 17 NC's raised in internal Audit. Correction is implemented for all

sation to improve the ISMS performance and effectiveness:

ocess in introduced to enhance the information security

nt register was reviewed during the meeting. There are two

RCA. Security events were also discussed during the meeting.>>
ent / Risks above the acceptance value:
management has accepted the risk.

ction Preventive Action has been implemented for 14 NC's, 3 NC's

ssues):

y the ISMS Core team

Responsibility Target Date Status

OPEN

OPEN
OPEN