Security Assessments

Attain audit readiness with help from our InfoSec experts.

Need to evaluate your IT security environment? We can help with that.

One of the reason we founded CI Security was to help organizations address that very challenge. A focused security assessment with our team is the first step on your roadmap to a more secure future.

Focused on Your Security Goals

We tailor each security assessment to your specific needs. We work to understand your goals, how you intend to use the assessment results, and the anticipated audience for the output. Once we fully understand your objectives, we develop the plan for your assessment by merging standards of practice from NIST, PCI-DSS, HIPAA, NERC-FERC, CJIS & 23 NYCRR 500.

We then conduct your security assessment over a one-week period, using a mixture of technical and interview-based methods. Then, we provide a list of corrective actions with estimates for cost and other required resources in a high-level, prioritized remediation roadmap. With our output, you will be able to address what matters most, first.

Follow the Roadmap

Our remediation roadmaps indicate which of the following topics each proposed activity addresses:

  • Standard industry practice
  • Compliance requirement
  • Estimate of risk
  • Federal incentive to reduce remediation cost
  • Corrective action prioritization

Budget for InfoSec Updates

Roadmaps also contain a list of estimated costs, which could include:

  • Capital purchases
  • Professional services
  • Internal resource costs
  • Operations and maintenance

Plan Ahead

Finally, the activity list and costs are reported with timeline recommendations for resource planning.

What cybersecurity risks exist within your organization?

Learn how to assess the cyber risks in your security program with CISO Mike Hamilton's white paper, "InfoSec Risk Management: a Primer to Assessing Technical Risk."

Get the White Paper