|
IT Security Compliancy Consulting Services
SEI IT security consultants have real-world experience and expertise in conducting extensive compliancy consulting services to ensure that enterprises and organizations are compliant with the new rules and regulations as defined under Federal and/or State Mandates or Laws. These brand new consulting services include:
 Gramm-Leach-Bliley Act Compliancy – SEI IT security consultants and banking auditors provide GLBA compliancy consulting for banks, financial institutions, and insurance companies who must now comply with GLBA Act. SEI will be launching its “Gramm-Leach-Bliley Act” seminar in the Summer of 2005 to educate and train individuals on everything you need to know about GLBA from a privacy and IT security perspective.
 HIPAA Compliancy – SEI conducts HIPAA compliancy consulting services centered around the HIPAA privacy mandates and IT security mandates. Currently, SEI provides HIPAA teaching services with its HIPAA Partner, VCI, Incorporated which owns the Certified HIPPA Security Professional Certification. HIPAA teaching and consulting services allows SEI to target health care organizations requiring HIPAA compliancy assessments and reporting on an annual basis.
 Sarbanes – Oxley 404 Compliancy - SEI IT security consultants provide SOX 404 compliancy consulting for publicly traded companies with a market cap of greater than $75M who must now comply with the SOX Compliancy Act and conduct an internal IT security assessment and audit annually. SEI will be launching its “Sarbanes – Oxley 404” seminar in the Summer of 2005 to educate and train individuals on everything you need to know about SOX 404 from a privacy and IT security perspective.
 NIST 800 – 37 and FISMA Compliancy - SEI IT security consultants provide NIST 800-37 Self Assessments for IT Security Frameworks for Federal Government agencies. In addition, compliance with FISMA Reporting is also addressed such that Federal Government agencies comply, from a Certification & Accreditation perspective, with its annual FISMA reporting requirements. SEI will be launching its “NIST 800-37 and FISMA Compliancy” seminar in the Summer of 2005 to educate and train individuals on everything you need to know about NIST 800-37 and FISMA reporting compliancy.
TOP
|
IT Security Strategic Planning encompasses all domains of IT Security responsibilities and defines the roles, responsibilities, and accountabilities for IT Security across the enterprise.
IT Security Framework Strategic Planning defines the necessary security policies, standards, procedures, and guidelines that an enterprise requires to properly secure and implement an IT security strategic plan.
Enterprise Vulnerability Management Strategic Planning encompasses a vast arena of vulnerability management topics including Risk Management, Risk Analysis, Vulnerability Management, and the proposed solutions for development and implementation.
Integrated Justice & Law Enforcement Strategic Planning encompasses a vast area of law enforcement, judicial and court system’s IT systems and how the integration and sharing of data can speed up the “ arrest / warrant / prosecution / conviction “ decision making process and streamline law enforcement and judicial processes. This type of strategic planning brings a significant ROI for conducting law enforcement and judicial IT systems and support.
Business Continuity Planning and Disaster Recovery Planning addresses small, medium and large business enterprises and organizations. These groups cannot afford to NOT have a business continuity plan and/or disaster recovery plan that addresses the critical assets of the organization in particular, data and information assets. This type of strategic planning brings the necessary insurance and comfort that an enterprise or organization can survive a major catastrophe and/or downtime from normal business operations.
Vulnerability Management – SEI conducts extensive vulnerability management design and implementation consulting services for enterprises or organizations that are have been found to have exposure to certain vulnerabilities. Design and implementation services may include assisting organizations with purchasing vulnerability management tools, hardware, and software solutions and implementing these tools and vulnerability management systems.
Software and Patch Management – SEI is a value added reseller/integrator of PatchLink’s Plus Server and automated software Patch Management solution. Designing and implementing an automated patch management solution is a huge undertaking that takes on responsibilities and accountabilities across the enterprise or organization. Software vulnerabilities are the number one reason why there are vulnerabilities and exposure to IT systems and IT infrastructures. Combating these vulnerabilities and exposures must start with an automated software patch management solution.
Risk Management and Crisis Management – SEI is a value added reseller/integrator of WISE Crisis Manager, an ASP model or site-license software solution for dealing with emergency response to a crisis. When dealing with Risk Management once must first conduct a Risk Analysis. From this Risk Analysis, a tactical battle plan must be drawn to address the response to risk or security breaches or a cyber-terrorist or terrorist attack. Integration of the WISE Crisis Manager solution with Federal, State, County, and Municipal governments and emergency response teams (police, fire, medical, military, etc.) is the crux of the overall design and implementation services that SEI provides.
Vulnerability Assessments – SEI can conduct a Vulnerability Assessment on an entire enterprise’s IT infrastructure, a data center, or a subset of the client’s IT infrastructure or environment depending upon budget and criticality as identified by the customer. Vulnerability assessments typically uncover threats, vulnerabilities, and exploits that an enterprise and organization may wish to consider to implement security countermeasures to combat against specific vulnerabilities based on their criticality to the enterprise or organization.
Penetration Testing – SEI can conduct an intrusive penetration test on a client’s enterprise IT infrastructure, data center, or a subset of the client’s IT infrastructure or environment with prior written permission and approval to do so.
Deployment and Implementation of Security Countermeasures - SEI IT security consultants have real-world experience and expertise in deploying, configuring, and implementing security countermeasures within an enterprise IT infrastructure, data center or segmented LAN or network once vulnerabilities and exploits are found. This includes installing and configuring: