Home  ::   www.SecureSynergy.com SecureSynergy - The Information Assurance company. SecureSynergy is a technology consulting company in the secure infrastructure space.
SecureSynergy - The Information Assurance Company SecureSynergy - The Information Assurance company. SecureSynergy is a technology consulting company in the secure infrastructure space.
   Wednesday, 14 May 2008
              
About Us Services News & Events Library Partners Support Careers Contact Us
WE WALK THE TALK SecureSynergy is
STRATEGIC
PARTNERSHIP
SECURESYNERGY EMPANELLED BY CERT-IN
Read more: 1  2
Empanelled auditor for national certifying authorities, securing India's PKI
Business Process Industry Association
of India
(formerly CCAI)
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
Consulting Practice Consulting Services
STANDARDS & REGULATORY COMPLIANCE
 
 
:: ISO 27001 Compliance ::
Scope
Understand corporate business and IT process
Analyse business and IT risks
Map business risk with ISO 27001 controls
Select applicable ISO 27001 controls
 
Description

ISO 27001 enables companies to measure the risks to their information and ensure that appropriate measures or controls are in place to protect their business and information assets. Our ISO 27001 compliance services assist an organisation to understand the gaps in information system controls as per the ISO 27001 control objectives and provide recommendations to address the gaps. This will assist an organisation in formulating implementation plans to achieve ISO 27001 certification.
 
 
 
 
:: COBIT Compliance ::
Scope
IT processes
IT resources
Information criteria
 
Description

COBIT (Control Objectives for Information and related Technology) is designed to be an Information Technology governance aid to the management in their understanding and managing of the risks and benefits associated with information and related technology. Our COBIT compliance services assist in achieving control objectives by managing the security function through the following four broad domains:

 
Planning & organisation
Acquisition and implementation
Delivery and support
Monitoring
 
 
 
 
:: Statement on Auditing Standard (SAS) No. 70 ::
 

Our SAS 70 Assurance services (Type 1 & Type 2) not only enable the management of a service organisation understand the effectiveness of the control environment, but also facilitate the service organisation to demonstrate to its users the effectiveness of its internal control environment.

Our SAS 70 services include:
 
Risk Assessment
Application Process Controls Review
Controls Definition and Documentation
Control Effectiveness and Assessment
Remediation
 

Through our SAS 70 services, a service organisation can also ensure compliance to the Sarbanes-Oxley Act.
 
 
 
 
:: Gramm-Leach-Bliley Act (GLBA) Compliance ::
 

SecureSynergy offers a range of services that help organisations become GLBA compliant. The scope of services encompass the entire spectrum: from development of a formal security program, approved by the board of directors, to implementing all the necessary procedural, technical and physical controls. Our GLBA compliance services assist in not only meeting the Privacy requirements of GLBA, but also in implementing a comprehensive Security Controls Framework based on ISO 27001 practices. Our services include:
 
Identifying and assessing risks that threaten client information
Developing security policies and procedures to manage and control these risks
Providing assistance in implementing the security policies
Conducting periodic audits to ensure a consistent level of Information Security in the organisation
 
 
 
 
:: Sarbanes-Oxley Act (SOX) Compliance ::
 

Our business oriented approach to SOX compliance goes beyond normal systems audit and focuses on deriving increased value for information systems through robust internal controls, implemented as part of an efficient corporate governance framework.

Using the COSO framework, we assist in establishing a healthy IT Control environment, enabling senior management understand the organisation's IT-related business risks, implement controls to mitigate them, and empower management of residual risk. The objective is to design an IT Security Governance framework, where the management can measure and control IT related business risks.

Our comprehensive approach to assessing, planning, designing, implementing and managing mission critical activities will assure rapid identification, improvements, and testing of internal controls and processes.
 
 
 
 
:: Health Insurance Portability and Accountability Act (HIPAA) Compliance ::
 

SecureSynergy recognises the challenges and opportunities organisations face in conducting business in a HIPAA compliant environment. The requirement of administration simplification specified in HIPAA presents an opportunity for organisations to redefine their processes to bring about efficiencies and adopt new technologies. Our approach to HIPAA compliance begins with assessing the impact of the Act on the organisation's processes and services. As part of the assessment we carry out the following:
 
Understanding the organisation's existing position and the challenges the regulation present
Assessing internal capabilities and identify gaps
Organising and plan for compliance efforts
 
Our compliance services also include:
 
Developing privacy and information security policies
Assisting in implementation of policies
Imparting Security and Awareness Training
 

The information security framework developed by us is in accordance with the best practices of COBIT and ISO 27001.
 
 
 
 
 
 
 
 
DOWNLOADS
Click here
 

There are many factors, some within one's control, and some not, which threaten an organization's ability to conduct its business.

  
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
        © Copyright 2002-2008 SecureSynergy Private Limited   Copyright | Disclaimer | Privacy