With headquarters in the U.S, we offer consultancy and advisory services on Information Security Management, Data Privacy Governance, and Cybersecurity Risk Management.
Implementation of Information Security Management System
Security policy development & Security awareness training
Advisory and Procedure preparation for various aspects of Information Security
Compliance with Standards, Regulations and Laws (COBIT, ISO 27000 Series, NIST, GLBA, SOX, HIPAA, PCI DSS)
Encryption and Cryptographic Material Handling
Information security responsibilities, Asset Management, Log Management, Access Control and Accounts credential administration,
Change, Problem, and Incident Management
Web and Mobile application security
Advisory on data privacy and security management program
Development of Privacy policy in alignment with GDPR, CCPA LGPD compliance regulatory requirements
Privacy Threshold and Data Privacy Impact Assessments (DPIA)
Assess operating effectiveness of controls
Data classification and Information handling
DSAR and cookie management
Implementation of ISO 29100 privacy framework
Privacy Training and awareness on the best practices
Third party data share and transfer mechanisms
Guidance on Risk Identification, Risk Assessment, and Risk mitigation as per NIST, ISO 27005, COBIT 5, and FAIR framework
Gap analysis, Selection, Implementation, and the Monitoring of the effectiveness of risk controls
Development of Security control baselines and recommendation of Risk control practices
Risk management with IT Basics, Business Continuity and Disaster Recovery, Data Center, and Data Processor assessment with GRC tools
Evaluation of Incident management practices
Exception Analysis and Reporting
Evaluation of vendors based on internal policies in reference to various standards and framework
Strategic sourcing process
Vendor due diligence review process (VDDR)
Inherent and residual risk Assessment
GRC and ongoing Monitoring
Assessment of Physical security controls,
System Hardening, Logical access controls, Backups as per the standards, and best practices
Analysis of penetration testing, vulnerability scanning, SSAE SOC reports, and the remediation process
Business continuity and disaster recovery
Development of Audit Plan
Execution, Communication, and Issue administration process.
Development of Audit testing strategy
Audit on Privacy governance, Privacy Architecture, Data governance, and life cycle.
Evaluation of the operating effectiveness of controls and reporting of Identity access, SDLC, Data backup and recovery, SIEM, Cloud security, Mobile security, Internet of Things, Database Security, Network Security, and Virtualization Security
services@prosecconsultants.com Phone No.: 469 325 8847
Copyright © 2020 PROSEC C - All Rights Reserved.
Powered by GoDaddy Website Builder