business

Vertical Business Industries and Regulatory Business and Technical Requirements

October 19, 2012

A short matrix of Industries and Regulatory Business and Technical Requirements

Industry

Expertise
Financial Services The Gram-Leach-Bliley Act of 1999 (GLBA), Part 748 and FFIEC audit guidelines has created renewed focus on risk management initially outlined in the FFIEC examiners handbook from 1998.  Guidelines published in July 2001, require financial institutions to assure the privacy and confidentiality of customer information through administrative, physical and technical safeguards.  ‘Consultant’ has developed specific assessment, risk analysis and policy templates to measure compliance gaps and guide future risk mitigation efforts on a justified basis.
Healthcare The 1996 Kennedy – Kassebaum Bill became law as the Health Insurance Portability and Accountability Act (HIPAA).  As privacy and security rules become final, ‘Consultant’ has developed “fast track” templates to guide assessment, project management, policy development, infrastructure upgrades and staff training.
Government Agencies The FBI, NIST, CERT, SANS and a new Homeland Security Office provide support for a wide range of government agencies to protect critical processes and data from cyber attack.  The standards and guidelines are rapidly emerging and ‘Consultant’ has dedicated the resources to adopt those standards into its assessment, risk analysis, policy development and infrastructure architecture Best Practices.  We combine an understanding of regulatory requirements with ISO implementation details. Government Information Security Reform Act (GISRA). Patriot Act, 21 CFR Part 11 and other relevant regulations.
Critical Infrastructure Homeland Security, the Patriot Act and numerous industry specific requirements are forcing dramatic improvements in physical and virtual security at critical infrastructure organizations.
eBusiness In addition to security policies, architecture and tools, ‘Consultant’ has developed specific expertise in testing and developing secure eBusiness applications.  We specialize in migrating legacy applications to web based shared facilities in a secure and reliable architecture.