The Ingenuity Security Program Assessment and Development service focuses on providing a high-level assessment of how an organization manages the security of their information systems and identifies key vulnerabilities and inherent risks. We provide recommendations for implementing best and practical security practices for the organization with a specific emphasis on addressing the key vulnerabilities and risks.
We conduct this assessment with an awareness of regulatory requirements and certification guidelines that apply to your business, such as Sarbanes-Oxley, HIPAA, and SAS 70, and/or the variety of Federal, State and Local Identify Theft Protection Acts that are emerging across the country.
And, as required by many of these regulations, guidelines and certifications, we work with your organization to develop, augment or replace security policies that specifically address the regulatory requirements, while guiding the organization in developing a security framework that is acheivable and ultimately successful in protecting the organization's information assets.
Our approach to Security Program Assessment and Development includes the following steps:
1. Conduct a Threat Analysis
2. Develop Written Security Policies and Procedures
Administrative
Technical
Physical
3. Recommend Technical and Physical Safeguards
4. Implementing a Security Awareness Program
Ingenuity is vendor neutral and does not resell security products or services.