Security Risk Assessments
Threat Assessment and Risk Management using CIS Benchmark - DISA STIGS and multiple platform- NIST 800-53 v4 - PCI DSS 3.2 - SOC2 2016 - HIPAA HITECH CSF - CSF Cyber Security Framework - ISO27002 - CIS CSC Top 20 - RMF - FedRamp - CJIS - UK CyberEssentials - FFIEC - GLBA - Any custom ISMS or ITGCC
IT & Enterprise Assurance
EnterpriseGRC will prepare your people, process, and programs for those critical and mandated risk conversations, such as SOC 2, ISO27001 RA, FedRamp, and HIPAA attestations. We train and support your second layer defense, improving your enterprise security effectiveness - Certified resources design and prepare evidence of SOX, SOC 2, PCI, ISO27, CJIS, HIPAA, NIST CSF CyberSecurity internal compliance policies, programs, and implemented systems. EnterpriseGRC understands the security product landscape and how to leverage your security architecture to demonstrate continuous and event driven compliance.
PMO Business Continuity & DR
Emergency Crisis Management Command Center, BCP Project initiation and management, Disaster Recovery (DR) Scope, Business Impact Analysis, Security - Identify and Prioritize, Assess Exposure, Establish, Document and Refine, Facility and Contract Management, Cybersecurity incident response exercises and planning