Security Planning

Planning for a Secure Future

Policies and Procedures

Policies are the blueprint for your security activities. Effective policies need to cover all areas without limiting your business activities. They must be carefully tailored to your environment and reinforce, rather than weaken, your corporate culture. They also must provide for not only current concerns, as well as expected growth.

These policies and procedures must be periodically reviewed and updated

Compliance Methods

As you are aware, your corporation must meet a host of Federal and State regulations. You may also have to meet the requirements imposed by credit card companies or industry associations that you have joined.

Our corporate compliance typically programs include compliance with:

  • Health Insurance Portability and Accountability Act
  • (HIPAA) compliance
  • Sarbanes-Oxley (SOX) compliance
  • Gramm-Leach-Bliley Act (GLB) compliance
  • Individual or multiple state requirements
  • PCI
  • And many more

Your plan must include provisions for regular review and updating. Threats and available safeguards change constantly. You cannot afford to be left behind.

Disaster Recovery and Business Continuity

Sixty percent of companies which suffer from natural or man-made disasters do not survive!

For this reason, Disaster Recovery Planning which provides for timely restoration of vital business functions must be an integral part of your security program.

These plans can take many forms and can be quite simple or very elaborate. We will work with you to design, implement and test plans to meet your business requirements.

Crisis Management

A disaster can take many forms including those which cannot be anticipated. Recent crises which companies have had to face have included:

  • Active Shooters
  • Kidnapping
  • Bombing
  • Tsunami
  • Biological hazard
  • Epidemic
  • Forest Fire
  • Earthquake
  • And more.

Because the exact nature of a crisis cannot be predicted, plans must be flexible and focus on resources, communication, coordination with emergency services agencies and training.

Depending on the nature of your company, plans may focus on centralized response or local response with possible escalation to higher management.

Your plan must reflect your corporate culture and integrate tightly with your existing disaster recovery and business continuity plan

Finally, as in all planning, a regular program of review and testing will assure that your plans are and remain functional.