TECHNOLOGY SECURITY & COMPLIANCE CONSULTATION

With an on-staff CISSP who's worked within a wide variety of government-regulated environments we view your organization from the overall security perspective.  From physical security, to hardware, to software, to process and procedure, we can provide risk-based perspective across all facets of your business and thus give you the information you need to guide your company's security and compliance programs. 

We can also provide you with compliance programs and documents within Payment Card Industry (PCI), Health Information Portability and Accountability Act (HIPAA), Sarbanes Oxley Legislation (SOX), and other regulated environments. 

Our team members have created and administered a wide variety of training programs, including military cyber-warfare training programs, corporate security-awareness programs, and regulatory compliance training programs for PCI, HIPAA and SOX.  We are uniquely suited to create custom training programs to fit any organization’s specific needs.  We can administer these programs, or teach your team to administer them and, where applicable, provide for regulatory audits to back up your internal administration.  We can also audit your current training programs to ensure they meet both the letter, and the intent of the regulation. 

Whether you do your software development in-house, or contract it out to third-party providers, you need to be assured that your software is being built on a secure foundation. Without SSDLC documentation, there's no process or procedure to which you can hold your developers.  

We can provide ground-up development of and SSDLC, train your developers, and monitor the output to ensure your software is on a secure foundation. If you already have and SSDLC documented, we can review it and provide feedback, and similarly review your existing production software to determine if it's vulnerable to attack.