|
Information Security Planning
Information Security Planning provides a proactive approach to protecting your company’s most expensive assets; your
information and the integrity of the systems that they run upon.
Threats to your networks and information system materialize in
the form of:
- stolen intellectual property
- unauthorized use of your critical resources
- denial of your critical resources and services
- the destruction or unauthorized altering of your data.
Your information systems may be compromised from both external sources and internal sources. Having virus detection software and even an Internet firewall are not enough.
There are a number of laws on the books requiring that a viable information security plan be put into place.
These include SEC regulations, the Electronic Communications Privacy Act (1986), Economic and Protection of Proprietary Information Act (1996), the Prudent Man Act and others.
Most recently the Health Insurance Portability and Accountability Act (1996) also known as HIPAA, requires companies dealing with health insurance and health care records put a number of security measures into place.
This law includes doctor’s offices, hospitals and HMOs, insurance companies, billing clearing firms, and even individual HR departments. Non compliance, even without an actual loss, will result in serious jail time
and fines of $250,000 for the doctors and business executives of these entities.
Dreamcatcher Disaster Resilience, LLC professionals working on your information security project are certified as CISSP, (Certified Information System Security Professional). We can help bring you into compliance
with these laws.
Deliverables may include improvements to your existing infrastructure and business processes from any of the following domains:
- Access control systems and methodologies
- Application and system development security
- Business continuity and disaster recovery planning
- Cryptography
- Law, Investigations and ethics
- Operations security
- Physical security
- Information security architecture
- Information security practices
- Telecommunication and network security
Information security programs are very scalable to the needs of the customer. Development time varies, depending on the scope of the project. Please contact us for a free discussion on your companies needs.
|
