Business Solutions and Services
Business Solutions and Services
In addition to our security operations,
TrustedTechPro®
provides security management services. These services help our clients assess, design, improve, and maintain their security posture. Our security management services also help our clients demonstrate compliance with the increasing number of laws mandating the protection of information and information systems.
Risk and vulnerability assessments are both the first task and one of the repeated tasks of the security management life cycle. As an initial activity, these assessments determine the scope of security operations, identify needed improvements, and ensure the least cost/highest benefit security operations. An effective initial risk assessment generally results in a plan of action to improve or change an activity safeguarding information resources.
Assessments are non-technical exercises to identify critical information resources and determine concerns about these resources. Assessments can be scoped to evaluate a specific organizational element or activity within and organization.
Evaluations are technical in nature and focus on the security posture of existing technology. Evaluations provide an easy-to-understand view of the configuration of networks, network devices, servers, and clients. Information security evaluations can also be scoped to evaluate a specific organizational element or activity. As a repeated task, information security evaluations can help management gage the performance of their security program.
Effective information security should be planned into systems at the same time that operational requirements are being developed. TrustedTechPro maintains knowledge of new and emerging technologies, helps you select from and integrate these technologies into your operations, helps you determine the appropriate security posture of these technologies, and ensure that the target security posture is maintained in the future. If your having trouble managing your security posture effectively, these activities are likely to be the root cause.
Certification is an evaluation of an information system by independent persons. Accreditation is the informed decision by management to accept the risks identified in the certification process and to decide if operations of technology systems should commence or continue. General guidance regarding Certification recommends that the certifiers are organizationally independent of the team operating the targeted system. For systems that are mission critical or have a potential for significant liabilities, TrustedTechPro recommends that certifiers are also politically independent as well. Thus, TrustedTechPro will not certify systems we operate.
Incident response includes those activities that help to prepare and exercise an organization for an adverse event, to maintain operations during an adverse event, as well as to identify the cause of such events. We provide our customers with services addressing all aspects of incident response.
We also offer password retrieval and reset services which are often necessary when key staff members transition to another organization.
© Copyright 2008 - 2010 TrustedTechPro, LLC | Supported Browsers
Site Map | Terms and Conditions | Privacy Policy | Trademarks