STANDARDS & COMPLIANCE

Standards & compliance best practices.
Medical facilities, law firms, and financial services firms aren’t the only businesses that need to worry about compliance with network security regulations and data privacy laws. If you’re doing business with organizations in these practices, or would like to, your company may also need to meet the same requirements.

Compliance is not just an IT issue.
Compliance involves interpreting bureaucratic language that is often vague
and constantly evolving. The first step is an audit by experts certified in industry standards and governing regulations that pertain to the organization’s practices. Standards such as IRS 1075, HIPAA, FERPA, CJIS, FINRA, Sarbanes-Oxley, ISO 27001 or many more. Once their compliance testing is complete, we will use
the experts’ gap-analysis report to guide our work, ensuring that your network meets or exceeds all policies, practices, controls and safeguards.

If you haven’t undergone an audit, we can arrange one for you through our network of trusted partners. We’ve helped clients comply with the standards of some of the largest financial institutions in the world, as well as federal, state, and local agencies. We’ll also show you how to demonstrate compliance when asked. As network security becomes ever more critical to business, compliance is a valuable marketing tool.

Learn more about the standards & compliance that may affect your IT environment

• HIPAA
• PCI DSS
• CIS Security Controls
• General Data Protection Regulation (GDPR)
• Sarbanes-Oxley Act (SOX)
• Children’s Internet Protection Act (CIPA)
• California Consumer Privacy Act (CCPA)
• Australian Signals Directorate (ASD)
• Protection of Personal Information Act (POPI)
• NIST Cybersecurity Framework
• EU Directive on Security of Network and Information Systems (NIS)
• NYDFS Cybersecurity Regulation
• ISO/IEC 27001:2013
• The Ohio Data Protection Act
• NIST SP800-171
• NERC CIP
• HITRUST Common Security Framework