Successfully reported this slideshow.
We use your LinkedIn profile and activity data to personalize ads and to show you more relevant ads. You can change your ad preferences anytime.

Sword & Shield Strategic Security Assessment

2,296 views

Published on

A holistic assessment of your security and compliance posture.

Published in: Technology
  • Be the first to comment

Sword & Shield Strategic Security Assessment

  1. 1. Sword & Shield’s Strategic Security Assessment A Holistic Assessment of your Security and Compliance Posture 1 Image From ISACA
  2. 2. 2 The security safeguards and regulatory compliance initiatives for your organization are multifaceted, often encompassing a combination of technical and administrative initiatives. Perhaps you’ve just come to the realization that you need to have a better understanding of how all the security puzzle pieces fit together.
  3. 3. Data Governance One 3 Think about your environment including your processes, technology, your people, your company culture, and the need to securely protect your information including your intellectual property from internal and external threats. Image from Overtis Systems
  4. 4. During a recent strategic security that I was working on for a large company in the entertainment industry, I came across a risk finding that I had encountered many times before but not on the scale I was accustomed to seeing. Data Governance Your more technically minded staff may be concerned about the configuration and effectiveness of your organization’s • Firewalls • Access Control • Virtualization Technologies • Server and workstation hardening best practices • Content filtering solutions • Encryption technologies • Intrusion Detection Systems • ..more 4
  5. 5. During a recent strategic security that I was working on for a large company in the entertainment industry, I came across a risk finding that I had encountered many times before but not on the scale I was accustomed to seeing. Data Governance Your administrative and technical management should be concerned about: • Effective policies and procedures • Effective security awareness training • Changes to regulatory compliance requirements • Protecting your public facing presence (company website) • Cloud service data protection agreements • Preparedness for responding to a security incident • Business continuity capabilities • ..more 5
  6. 6. During a recent strategic security that I was working on for a large company in the entertainment industry, I came across a risk finding that I had encountered many times before but not on the scale I was accustomed to seeing. Data Governance The company leadership is concerned with: • Balancing security and compliance while still getting the job done • Changes to the company culture when introducing new security mandates • Making the correct security investment that will provide the most return for the money spent 6
  7. 7. During a recent strategic security that I was working on for a large company in the entertainment industry, I came across a risk finding that I had encountered many times before but not on the scale I was accustomed to seeing. Data Governance OR: • The proper vetting, selection and use of cloud services solutions • What makes sense in your organization for using cloud services? • Just how secure are cloud solutions when it comes to securing your data? 7
  8. 8. During a recent strategic security that I was working on for a large company in the entertainment industry, I came across a risk finding that I had encountered many times before but not on the scale I was accustomed to seeing. Data Governance The Strategic Security Assessment can be broken down into: • Administrative Safeguards • Technical Safeguards • Data Governance • Risk Assessment • System Architecture • Cloud Services 8
  9. 9. During a recent strategic security that I was working on for a large company in the entertainment industry, I came across a risk finding that I had encountered many times before but not on the scale I was accustomed to seeing. Data Governance Sword & Shield’s Information Systems Strategic Security Assessment will provide you with a comprehensive look into your people, processes, technology, and organizational strategies for achieving and maintaining a secure and compliant environment. Our subject matter experts are not simply applying book knowledge when assessing your environment. Our assessors are seasoned specialists in the field of system and network security, system architecture, regulatory compliance requirements such as NIST, HIPAA, PCI, EI3PA and much more. 9
  10. 10. During a recent strategic security that I was working on for a large company in the entertainment industry, I came across a risk finding that I had encountered many times before but not on the scale I was accustomed to seeing. Data Governance Administrative Safeguards covered in this assessment include but are not limited to: • Policies and Procedures • Staff Training Programs for Privacy and Security Awareness • Data Governance and Data Classification • Risk Assessment • System Architecture • Business Continuity Plans • Incident and Breach Response Plans • Specific Regulatory Compliance Requirements • Service Agreements for Cloud Services Review 10
  11. 11. During a recent strategic security that I was working on for a large company in the entertainment industry, I came across a risk finding that I had encountered many times before but not on the scale I was accustomed to seeing. Data Governance Technical Controls covered in the Strategic Security Assessment include but are not limited to: • Access Control • Encryption • Audit Controls • Transmission Security • Intrusion Detection • Patch Management • Physical/Facility Security • Virtualization Security • System Hardening • Active Directory 11
  12. 12. During a recent strategic security that I was working on for a large company in the entertainment industry, I came across a risk finding that I had encountered many times before but not on the scale I was accustomed to seeing. Data Governance The Strategic Security Assessment Network Architecture Review includes an expert assessment of: • Current Network Technologies In Use • Network Segmentation • Managed or hosted services models including hybrid architectures • Cloud Services • Firewalls • Intrusion Detection • ..more 12
  13. 13. During a recent strategic security that I was working on for a large company in the entertainment industry, I came across a risk finding that I had encountered many times before but not on the scale I was accustomed to seeing. Data Governance We also review your facility and physical access controls 13
  14. 14. During a recent strategic security that I was working on for a large company in the entertainment industry, I came across a risk finding that I had encountered many times before but not on the scale I was accustomed to seeing. Data Governance Deliverables include a comprehensive Strategic Assessment Report and a Security Roadmap with remediation recommendations based on the assessment findings. 14
  15. 15. During a recent strategic security that I was working on for a large company in the entertainment industry, I came across a risk finding that I had encountered many times before but not on the scale I was accustomed to seeing. Data Governance The Sword & Shield Strategic Assessment provides the all inclusive information about your current security and compliance posture that you need to know. 15
  16. 16. During a recent strategic security that I was working on for a large company in the entertainment industry, I came across a risk finding that I had encountered many times before but not on the scale I was accustomed to seeing. Data Governance Questions? 16

×