IT Security Systems

Information Security Awareness Training

With IT Security Systems, people may believe that this technology alone protects personal or work information from being exploited or breached; when in fact, no type of technology is 100% safe.

Due to the proliferation of social engineering tactics and security breaching methods, and because the Internet can easily introduce and spread malware without user knowledge, it is absolutely vital to learn the right and wrong ways to use technology and the Internet.

Most of the responsibility lies in the hands of the user and the network security techniques they choose to utilize. For some strange, illogical reason, IT Security Systems awareness training is often viewed as a luxury and not as a necessity. In reality, this critical training is necessary.

We invite you to take our IT Managed Services Quick Survey: If you answer "Yes" to any of the following questions, allow your systems to be at risk no longer and give us a call today! We look forward to hearing from you and assisting you and your company as best we can!

     • Do you know and understand all the rules of and all of your compliance obligations?
    • Are you prepared for you next audit, and if so, do you have the time necessary for it?
    • Would you like to reduce the overall cost of compliance? (We are sure you would!)

Information Assurance Process Testing (IAPT)
The Information Assurance Process Test suite is a series of process examinations which seek to discover potential risks and flaws in existing non-technical security processes implemented within the organization. This assessment may include areas as diverse as:

    • Governance and Management Structure Security and Efficacy Testing
    • Information Security Policy Implementation Testing
    • Personnel Security Testing (Background Checks and Screening, Confidentiality, Non-
      disclosure, and Authorized Use Agreements, Job Description)
    • Risk Assessment Process Testing and Risk Management Procedural Testing
    • Security Process Controls Testing
    • Third Party Vendor Security Testing (SAS70 Reviews, Policy Validation)
    • Insurance Validation Testing

Regulatory Framework Compliance Review (RFCR)
If an organization is subjected to state and/or federal regulations as part of their core business, they may be required to follow one or more established compliance frameworks. As such, InfoSight's Regulatory Framework Compliance Review can assist an organization in determining their compliance to such frameworks prior to the arrival of auditors and examiners. This assessment is conducted against the frameworks an organization is required to comply with, and can vary from engagement to engagement. The security tests performed during the Regulatory Framework Compliance Review include the following:

    • PCI Compliance Review
    • COBIT Compliance Review
    • SOX 404 Compliance Review
    • GLBA 501(b) Compliance Review
    • BSA Compliance Review
    • HIPAA Data Security Compliance Review
    • Red Flag Identity Theft Review

Complementary Services
Vulnerability Scanning
Email Encryption
Information Security Awareness Training