Information Security and Compliance Governance

eBisLogic has helped Fortune 1000 companies comply with regulatory directives, mitigate sensitive data risks and achieve vigilant data governance. eBisLogic’s extensive real-world experience coupled with active involvement in The American Bar Association's Information Security Committee, The InfraGard National Ethics Committee and The Information Systems Security Association (ISSA) uniquely position it to help its clients efficiently integrate regulatory directives without impacting the business.

eBisLogic Services include:

  • HIPAA, SOX, PCI, GLBA, and COPPA compliance and risk assessment, program planning, mitigation, testing and re-assessment using established framework standards such as COSO, CobiT, ITIL, and ISO-17799.
  • Development of customized enterprise standard security “posture” and controls framework to enable secure and verifiable partner relationships.
  • Credible and independent forensic investigation and reporting on information security violations, including relationship management of government agencies.
  • Knowledge transfer that enables growing compliance personnel and establishes enterprise-wide regulatory awareness.
  • Development of security policies, standards, guidelines, and procedures along with dissemination of information security awareness and training materials thru creative interactions like town-hall meetings, team building exercises at the group level, fun-filled games and security open house themes.
  • Design and implementation of integrated set of security monitoring tools for enterprise systems, applications, global Network systems and Extranet infrastructure including outsourced systems and co-located facilities, like data center, partners, suppliers and managed service providers thru SAS 70 attestation and change records.
  • Enterprise level PCI audits, gap analysis, Vulnerability Assessments following the established standards by VISA.
  • Best practices in Change management, escalation and security incident review thru a standing committee. Methodology in Application Security Evaluation and Assessment Report framework for the outsourced applications.

 

For more information or to schedule a meeting to review our Information and Business Risk Management  COE charter and services,  please send an email to Info@eBisLogic.com