|
Financial
services and healthcare
regulatory requirements--and your customers'/clients' needs for privacy
and security--are putting pressure on you to have an extraordinarily
effective Information Security program. In practical terms, an effective
Information Security program is one that meets
the commitments made in your Security and Privacy Policies and Statements
and one that obeys regulatory rules.
For years, you have had
physical, electronic and procedural safeguards in place to protect your
customers'/client's sensitive information. The question now is: are the
safeguards good enough to meet regulatory and our customers'/clients'
approval?
That's where Onsett can
help. We focus on security and privacy safeguardsthe behind-the-scenes
policies, practices, procedures, standards, guidelines, and processesrequired
for compliance with federal rules for the protection of customer/client
information. The
services described below specifically
address the key Privacy issues you now face.
|
|
|
- Virtual Chief Privacy Officer
(vCPO)
|
|
We help Information
Security and Privacy executives deal with hot spots (crises of the
month) and issues that they lose sleep over. Onsett's experience with
operationalizing and institutionalizing enterprise- level information
security programs--making things happen and making them stick--provide a
force multiplier and trusted advisor relationship to help executives
effectively deal with day-to-day issues and yet continue to mature their
information security and privacy programs. CLICK
HERE for more details.
|
- GLB Safeguards Review &
Plan
|
|
Our quick-response review and accompanying plan
provide a prescriptive assessment of your information security and
privacy readiness to comply with Financial Services
requirements for a
comprehensive information security program that protects sensitive
customer information. CLICK
HERE to download a .PDF GLB service offering summary.
|
- HIPAA Safeguards Review
& Plan
|
|
Our quick-response review and accompanying plan
provide a prescriptive assessment of your information security and
privacy readiness to comply with Health Care (HIPAA) administrative requirements for a
comprehensive information security program that protects sensitive
client information. CLICK
HERE to download a .PDF
HIPAA service offering summary.
|
- Enterprise Privacy
Assessment
|
|
We assess the effectiveness of your
enterprise's information security and privacy policies, processes, organization , and technology
with respect to their ability to meet regulatory requirements for a
comprehensive information security and privacy program.
|
- Strategic Privacy Roadmap
|
|
We develop a comprehensive
strategic Roadmap of activities to reach compliance with Privacy
regulations. The Roadmap:
- Aligns and maps programs
and resources with strategic business and risk management goals and
timelines
- Provides a high-level
investment plan in terms of tools, technology, processes, and people
required to meet strategic business and risk management goals
- Provides a tactical plan
with an 18-month horizon to outline how to begin achieving the
strategic goals
|
|
|
|
We provide a framework for the rapid and consistent
assessment of the effectiveness of information security policy, process,
organization, and technology employed in companies that you may be
acquiring or partnering with.
|
- Privacy Incident Response
|
|
We develop and deploy a process
for receiving, documenting, tracking, investigating, and taking action on all
privacy complaints and lapses in the organizations privacy policies or
procedures.
|
- Privacy Awareness Programs
|
|
We develop privacy awareness programs and
content for your organization. Typically, this is done in
conjunction with a more general information security awareness program
where we highlight the day-to-day responsibilities of the key
constituents in your organization.
|
|
Join Onsett's growing list of Fortune 100 clients who
have benefited from our information security and privacy services.
For more
information, please email infosec@onsett.com
or call +1 617.577.9130, dial 1 232.
|
