|
Companies that depend
on a secure intranet and external connections to perform
their day-to-day operations. |
|
Companies that have not
had their network assessed in the past year are the most
prone to inadvertent compromise (worms, viruses) or deliberate
attacks causing significant down-time and potential loss
of client and vendor data. |
|
Companies that want to
invest 3 days to ensure their business operates securely
the remaining 362 days of the year. |
The scope of our Business Security Health
Check includes a physical walk-through of the IT environment,
interviews with key IT team members and users, and a gap analysis
of compliance against key industry standards. Specifically,
the Arsenal Security Group team will examine the 10 key security
management areas:
|
Security Policy |
|
Security Organization |
|
Asset Classification and
Control |
|
Personnel Security |
|
Physical and Environmental
Security |
|
Communications and Operations
Management |
|
Access Control |
|
System Development and
Maintenance |
|
Business Continuity Management |
|
Compliance |
After an initial call, the Arsenal Security
Group Senior Partner will prepare a statement of work within
2 days and we normally can begin an engagement within two
weeks. During the engagement we will use interviews, questionnaires,
physical tours and technical tools to develop our assessment.
We usually use 1-2 consultants in tandem with a Senior Partner
to complete an engagement. We will provide an executive summary,
a detailed report with all of our findings and recommendations,
and a final on-site presentation. Our engagement is not complete
until all of our deliverables have been reviewed and accepted
by our client.
About
Arsenal Security Group
Arsenal Security Group is a security
consulting firm that is focused on close client coordination
and collaboration. From the initial meeting through the final
presentation, one of Arsenal Security Group’s Senior
Partners will be the primary contact for all engagement activities.
We proactively conduct weekly calls with our client when engaged
and meet with clients on a quarterly basis to review and understand
their security posture – even when we are not actively
engaged on assignment to ensure they are aware of new security
risks or regulatory changes they may impact their business.
^^ Top |
