ISP Audit
A structured, scored compliance assessment against PTA's CTDISR-2025 framework. Answer the questionnaire. Receive your gap report. Know exactly what to fix before your regulatory audit.
Most ISPs Do Not Know What PTA Will Find
PTA's CTDISR-2025 framework covers 19 sections and 104 controls spanning governance, access control, asset management, incident response, data privacy, cloud security, HR controls, and business continuity. Most ISPs have no systematic way to assess their position across all of these before an auditor arrives.
They discover gaps during the audit - when remediation timelines are compressed and regulatory attention is already on them. ISP Audit changes that. Answer a structured questionnaire mapped to every CTDISR-2025 control, and receive a scored gap report that tells you exactly where you stand and what to prioritise.
No Surprises
Know your compliance gaps before PTA's auditors document them as findings.
Prioritised Output
Gaps are scored by severity so you fix the right things first.
Audit Evidence
The completed assessment report serves as documentary evidence of your compliance program.
From Questionnaire to Gap Report in Hours
Assess
Complete a structured questionnaire covering all 19 CTDISR-2025 sections. Takes under 2 hours. No specialist required.
Analyse
The platform scores your responses against each control, identifies gaps, and rates severity based on regulatory weight and exploitability.
Report
Receive a branded PDF gap report with your compliance score, section-by-section findings, and a prioritised remediation checklist.
Every Section. Every Control.
Governance and Roles
ISSC structure, CISO appointment, board reporting, and segregation of duties.
Access Control
Role-based access, mandatory MFA, privileged access management, Zero Trust status.
Asset and Risk Management
Asset inventory, annual risk assessment, risk treatment documentation.
Incident Response
IR plan, 24-hour reporting capability, nTSOC integration, nTCERT coordination.
Data Privacy and Cloud
Data localisation, cloud security controls, PII handling, third-party risk.
Business Continuity
BCP existence, DR procedures, tabletop exercise records, RTO/RPO documentation.
Pricing Built Around Your Operation
Pricing is based on your organisation size and assessment scope. We do not publish fixed tiers because different operators have fundamentally different needs.
Organisation Size
Pricing scales with the number of staff and infrastructure scope covered in the assessment.
Assessment Depth
Standard covers all 104 controls. Enhanced adds evidence review and a pre-audit consultation session.
Remediation Support
Optional add-on: hands-on remediation support after the gap report is delivered.
14-day free trial available. No credit card required.
Need Help Acting on Your Results?
Cybersecurity for ISPs
Infrastructure hardening and security controls to close the gaps ISP Audit identifies.
Business Continuity Planning
BCP development to satisfy the continuity controls assessed in ISP Audit.
Know Your Compliance Posture Before PTA Does
ISP Audit is currently in early access for PTA-regulated telecom operators in Pakistan.