IT Security Systems
Information Security Awareness Training
With IT Security Systems, people may believe that this technology alone protects personal or work information
from being exploited or breached; when in fact, no type of technology is
100% safe.
Due to the proliferation of social engineering tactics and security
breaching methods, and because the Internet can easily introduce and
spread malware without user knowledge, it is absolutely vital to learn
the right and wrong ways to use technology and the Internet.
Most of the responsibility lies in the hands of the user and the network
security techniques they choose to utilize. For some strange, illogical
reason, IT Security Systems awareness training is often viewed as a
luxury and not as a necessity. In reality, this critical training is
necessary.
We invite you to take our IT Managed Services Quick Survey: If you
answer "Yes" to any of the following questions, allow your systems to be
at risk no longer and give us a call today! We look forward to hearing
from you and assisting you and your company as best we can!
• Do you know and understand all the rules
of and all of your compliance obligations?
• Are you prepared for you next audit, and if so, do you have
the time necessary for it?
• Would you like to reduce the overall cost of compliance?
(We are sure you would!)
Information Assurance Process Testing (IAPT)
The Information Assurance Process Test suite is a series of process
examinations which seek to discover potential risks and flaws in
existing non-technical security processes implemented within the
organization. This assessment may include areas as diverse as:
• Governance and Management Structure Security and Efficacy
Testing
• Information Security Policy Implementation Testing
• Personnel Security Testing (Background Checks and
Screening, Confidentiality, Non-
disclosure, and Authorized Use Agreements, Job
Description)
• Risk Assessment Process Testing and Risk Management
Procedural Testing
• Security Process Controls Testing
• Third Party Vendor Security Testing (SAS70 Reviews, Policy
Validation)
• Insurance Validation Testing
Regulatory Framework Compliance Review (RFCR)
If an organization is subjected to state and/or federal regulations as
part of their core business, they may be required to follow one or more
established compliance frameworks. As such, InfoSight's Regulatory
Framework Compliance Review can assist an organization in determining
their compliance to such frameworks prior to the arrival of auditors and
examiners. This assessment is conducted against the frameworks an
organization is required to comply with, and can vary from engagement to
engagement. The security tests performed during the Regulatory Framework
Compliance Review include the following:
• PCI Compliance Review
• COBIT Compliance Review
• SOX 404 Compliance Review
• GLBA 501(b) Compliance Review
• BSA Compliance Review
• HIPAA Data Security Compliance Review
• Red Flag Identity Theft Review
Complementary Services
Vulnerability Scanning
Email Encryption
Information Security Awareness Training