|
The information security community has acknowledged the importance of aligning business interests with technology and security objectives. The statement, “Security is no longer a technology problem but a business problem.”, is almost cliché. This understanding, however, has not led to the wide spread adoption of leading business practices in information security programs. Laconic Security works to aid our clients in the implementation of these business practices and so increase the efficiency and effectiveness of their security programs. Business questions answered by our services: - Risk Analysis; What do we do first?
- Security Financial Analysis; How much money will it take?
- Strategic Planning (PELM); How do we get this done?
- Metrics Program; Are we succeeding or failing? What can we do better?
- Maturity Services; Can we reduce our cost over time?
- Management Consulting; Who is going to do this? Why? How well?
- Business Process Analysis; Is there an easier way to do this?
|
|
Read more...
|
|
With the rise of government and industry regulations, enterprises are expected to understand and conform to any number of standards, processes, procedures and guidelines. This can be a daunting task for organizations whose core business is not information security or regulatory compliance. Laconic Security's Standards offerings are designed to assist your organization in preparation for regulatory audits by providing expert guidance on industry regulations.
Laconic's standards offerings include:
- Payment Card Industry (PCI) Gap Analysis and Remediation
- ISO-17799 Assessments
- HIPAA Assessments
- FISMA (NIST SP 800-53)
- SOX Compliance (Section 404)
- ITIL, SEI-CMM & Other Maturity Standards
|
|
Read more...
|
|
Laconic Security's technology offerings enable your organization to protect your infrastructure from the wide variety of threats that impact enterprises on a daily basis. For critical infrastructure that experiences a high rate of attack (high threat occurrence), it is imperative that an effective technical assessments be performed to ensure the appropriate defenses are in place. Laconic's technology offerings include: - Security Technology Architecture & Deployment
- Network Security Analysis
- Application Security Assessment
- Source Code Review
- Data Security and Management
- Sensitive Data Discovery
- Incident Management
- Root Cause Analysis
- Technology Integration
|
|
Read more...
|
|
Laconic offers training services that enable organizations to educate key personnel on a variety of business, technology and security topics. User education and training has been shown by many research firms to be the cornerstone of a successful security program. Educated and informed employees ensure security policies are implemented, observe the behavior of others and understand the importance of their involvement in the corporate security program. Laconic's training offerings include: - Information Security 101
- Security Awareness Training
- Incident Management and Forensic Analysis
- Payment Card Industry (PCI) Overview
- Secure Programming and Software Development Lifecycle
- Security Assessment Methods
|
|
Read more...
|
|
|
|
|
|
Services
