C2C Methodologies built for Services

C2C Methodologies and Service Capabilities

  • Privacy compliance (inc. ISO 29100)
  • CyberSecurity (NIST CyberSecurity Framework, NYDFS, FINRA, PAS 555, CIS Controls , G7 Fundamental Elements of CyberSecurity for the Financial Sector and SEC CyberSecurity Guidelines)
  • Financial Services (banking) alignment and compliance
  • Healthcare compliance (HIPAA)
  • Policy Gap Analysis (mapped to specific control libraries and regulatory requirements
  • Sarbanes Oxley compliance
  • IT and Enterprise Security Process Model
  • Payment Card Industry compliance (PCI/DSS)
  • Smart Grid – NIST alignment and compliance
  • Corporate Governance models
  • IT Governance models
  • Security Governance models
  • Business Continuity Models
  • Business Impact Analysis (BIA)
  • Gap Assessments/Second Party Assessments model
  • Projects for International standards implementations ISO 27001/ISO 20000/ISO 22301/ISO 31000/ISO 17025/ISO 9001/ISO 14001/BS OHSAS 18001/ISO 45001 – ISO 27017 and ISO 27018
  • Risk Management and Assessment models including inherent risk
  • NIST and Federal requirements models based on NIST 800-53
  • Model for Utilities and Telecom NERC CIP compliance
  • Data Vault Modeling
  • Vendor Management and Resilience
  • Compliance Management based on ISO 19600
  • Software Asset Management
  • Secure Development Lifecycle (SDL)
  • Content Alerting
  • Regulatory Change Management
  • Interface to IBM OpenPages
  • Extensive Mappings from Policies/Processes providing line of sight across multiple regulatory frameworks