Compliance
PCI-DSS
The Payment Card Industry (PCI) Data Security Requirements apply to all merchants and service providers who store, process or transmit cardholder data. The security standards that includes security management, policies, procedures, network architecture, software design and other critical protective measures. Our proactive services helps your organziation assess where your security enviornment prior to testing. We help your organziation with the roadmap to meet and comply with comply the industry standard.
PCI Compliance Related Features:
- Review of all 12 Requirements of the standard
- Pre-Assesement overview of systems and process
- Quarterly scanning services and policies checks
- Determine existing security vulnerabilities using penetration testing
- Validate payment applications for PCI audit with application security vulnerability assessment
- Gap Assessment to determine compliance requirements
- Remeditation Planning and Executing
- Detailed recommendations for compliance maintenance in your organization addressing People, Process and Technology.
- Management review with support and guidance from Innovative CSi expertise in the area of security.
- PCI Project Management is availible with CISO bundle
ISO 27001
ISO 27001 Compliance Testing service benefits organizations to understand & identify gaps in information system controls related to the ISO 27001 objectives and provide recommendations to address the gaps.
ISO 27001 enables organizations measure risks facing their information systems and ensure that appropriate measures and controls are in place to protect their business and information assets.
ISO 27001 Compliance Related Testing Features:
- Threat & Risk Assessment based on ISMS (Plan,Do,Check, Act).
- Penetration Testing and security Vulnerability assessment
- Controls check from Management, Operations, and Technical levels
- Remeditation Planning and Executing
- Compliance ReportDetailed recommendations for compliance maintenance in your organization addressing People, Process and Technology.
- Management review with support and guidance from Innovative CSi expertise in the area of security.
Red Flag Rules
Red Flag Rules consulting services addreses privacy and identity theft "red flags" to meet the FTC compliance. We provide a written identity theft prevention program that protect consumers, customers, clients, and employee confidential data along with the investigation follow-up when needed
Red Flag Rules Related Testing Features:- Red Flag Rules compliance report on the 21 flags around Administrative,Technical and Physical Controls
- Quarterly scanning services and policies checks
- Web Application/Network penetration testing/Vulnerability assessment
- Control gaps, Planning and Executing
- Detailed recommendations for compliance maintenance in your organization addressing People, Process and Technology.
- Management review with support and guidance from Innovative CSi expertise in the area of security.
Health Insurance Portability and Accountability Act (HIPAA)
Our Health Care consulting services program help your orgnaization fill the gaps of missing privacy polices, procedures, physical access controls, technical access controls and internet/intranet controls need to comply with the new HITECH Act on a continious basis. Innovative CSi’s framework on privacy and security helps to reduce your data privacy exposure and control your security costs. Innovative CSi is currently consulting with covered entity under the HIPAA/HITECH regulations
HIPAA Compliance Related Testing Features:
- HIPAA compliance report on Administrative,Technical and Physical Controls
- Quarterly scanning services and policies checks
- Web Application/Network penetration testing/Vulnerability assessment
- Control gaps, Planning and Executing
- Detailed recommendations for compliance maintenance in your organization addressing People, Process and Technology.
- Management review with support and guidance from Innovative CSi expertise in the area of security.
Government Readiness
Innovative CSi uses a combination of expertise in the field of information security and management to provide our clients with the overall picture of their security posture to work with the US Government. Innovative CSi gives your organization the complete picture by combining the non-technical and technical into a full risk assessment to present the "big picture" of security within your organization to comply with Special Security Agreement (SSA), FISMA, DOD 8500, 8570-1m, NIST 800 series, and other government requirements.
Govt Readiness Related Testing Features:
- We cover complinace in NIPSOM, FISMA, NIST 800, DOD 5220, 8500, 8570, Homeland Security Directive
- Idustry Leader in Security Risk Management & Complance
- Assistance in reporting, classifying, monitoring and continuous improvement of the security
- Quarterly scanning services and policies checks
- Web Application/Network penetration testing/Vulnerability assessment
- Control gaps, Planning and Executing
- Detailed recommendations for compliance maintenance in your organization addressing People, Process and Technology.
- Management review with support and guidance from Innovative CSi expertise in the area of security.