ERE Information Security Auditors |
 |
| |
|
| |
|
| |
|
| |
|
| • |
ERE - information security auditor experts - auditors of information technology security, privacy, regulatory compliance, and standards compliance. Our security audits scope includes: |
| • |
IT Security |
| |
| » |
Security computer |
|
| » |
Network Security |
|
| » |
Web Security » Cyber Security - Risk Security |
|
| » |
Software Compliance Management |
|
| » |
Identity management authentication gap analysis |
|
| » |
Security checklist in the audit report, identifying all vulnerabilities and how to secure them |
|
| » |
Risk threat assessment of current IT security posture and ROI based recommendations of how to mitigate the risk
|
| » |
Information security audit (superset of technical IT security auditors, including processes, policy, non-digital data, and IT Governance
|
|
| |
|
|
|
| • |
Our Security audits and Compliance audits identifies compliance verification to Standards like COBIT, CIP and PIPEDA |
| |
| » |
Privacy, compliance to privacy standards, such as Gramm Leach Bliley, PIPEDA, HIPAA. RCMP/CSE TRA |
|
| » |
Financial compliance regulations such as Sarbanes Oxley, Bill 198 |
|
| » |
Information Technology Security standards, compliance with NERC CIP, ISO 27001, COBIT, ITIL |
|
|
| • |
Policy, Plan, and Audit Report |
|
| » |
Creating policy and plan documentation to achieve compliance with corporate information technology security standards, compliance with NERC CIP, ISO 27001, COBIT, ITIL and other information security standards |
|
| » |
IT Security Auditors Gap analysis on current policy and computer security plan documentation |
|
| » |
Security checklist creation as a template for security policy and plan documents |
|
|
| |
|
| |
|
|
| |
7x24 Monitoring and Auditing Security and Compliance |
|
| • |
Our 7x24 monitoring and auditing, which is perpetual security
auditing takes one point in time compliance auditing into real-time
with real-time trouble ticket reporting on new vulnerabilities and
new compliance violations |
| • |
The 7x24 monitoring and auditing service identifies security network
vulnerabilities and compliance violations with corporate policy,
security and Internet security standards such as COBIT, NERC CIP,
ISO 27001, and with Internet privacy standards such as PIPEDA,
HIPAA, RCMP/CSE TRA, and Gramm Leach Bliley |
| • |
7x24 monitoring and auditing identifies lapses in compliance with
policy for identity management authentication, particularly with
regard to standards such as COBIT and Sarbanes Oxley |
| • |
Included with 7x24 monitoring and auditing service is a risk threat assessment score card every month, highlighting major IT security, privacy, and network threats, and how to mitigate them
|
| |
|
| |
|
| |
|
 |
|
| |
|
|
|
Audit Report Caters to both Executives and Technology Team |
|
| ERE security audit report is crafted in distinct sections to meet the specific needs of: |
| • |
Executives who are most interested in risk and threat assessment analysis, ROI for implementing technology and policy, and IT security governance |
| • |
Network security and IT security operations wanting security audits that detail security risks and threats relating to IT security, network security, web application security and identity management authentication, and an information security auditor that provides full transparency |
| |
|
| |
Extensive Knowledge Transfer |
|
| • |
To lever the value of the security or privacy compliance audit report, and to assist in cost justifying the report recommendations, ERE provides extensive post audit knowledge transfer and network security training. |
| • |
The IT security checklist is a key element of knowledge transfer. It correlates vulnerabilities, mitigation recommendations, threat risk assessment, business impact, and gap analysis for specific standards and regulations, and is published with every ERE audit report. |
 |
| |
|
| |
|
|
ERE Value Proposition |
|
IT Security Auditors who deliver: |
| • |
Impartiality |
|
| • |
Confidentiality |
|
| • |
Expertise. CISSP certified security experts write each ERE audit report |
|
| • |
Security checklist of vulnerabilities and specific mitigation steps in each audit report |
|
| • |
Information security auditor who answers all technical questions. |
|
| • |
Evidence of each threat and risk clearly identified |
|
| • |
Mapping of compliance to any standard such as COBIT, Sarbanes Oxley, PIPEDA, including gap analysis with specific steps to remedy compliance violations |
|
| |
• Security audits with clarity |
|
|
|
ERE Differentiators |
|
| ERE has gone to great lengths to develop customer centric services, highly tunable to meet the exact needs of each individual client. We have compiled a list of ERE differentiators which we hope will assist prospective clients to evaluate ERE Security audits can meet their specific needs. |
|
| |
|
| |
|
| |
|
| |
|
|
We even provide at no cost an impartial spreadsheet based evaluation tool for selecting an information security auditor.
 |
|
|
RSS Feeds |
|
March 09, 2010
McAfee Warns Consumers Of Fake Antivirus Software
read more..
|
| |
March 09, 2010
Report: Federal cybersecurity plan facing a multitude of barriers
read more..
|
| |
March 09, 2010
March 2010 - Microsoft Patch Tuesday Diary
read more..
|
| |
March 09, 2010
TECHEXPO Top Secret Career Fairs
read more..
|
| |
March 09, 2010
New IE Zero-Day Flaw Being Used In Targeted Attacks
read more..
|
| |
March 09, 2010
Bogus Intranets Scam University Students
read more..
|
| |
March 09, 2010
Malware found on HTC Android phone from Vodafone
read more..
|
| |
March 09, 2010
Microsoft Updates for Multiple Vulnerabilities
read more..
|
| |
March 08, 2010
The Energizer DUO Trojan: What You Need to Know
read more..
|
| |
March 08, 2010
VeriSign on DNSSEC support
read more..
|
| |
March 08, 2010
Google in The Onion
read more..
|
| |
March 08, 2010
RSA CONFERENCE 2010: Al Qaeda 2.0 and the rise of the robots
read more..
|
| |
March 08, 2010
China to crack down on Google hackers if evidence is shown
read more..
|
| |
March 08, 2010
Energizer software found to open backdoor
read more..
|
| |
March 08, 2010
SEO poisoning on TV show
read more..
|
| |
March 05, 2010
Opera says bug probably can't commandeer machines
read more..
|
| |
March 05, 2010
Multi-application smart cards can provide different levels of security
read more..
|
| |
March 05, 2010
CSS Web Installer ActiveX Control Buffer Overflow Vulnerabilities
read more..
|
| |
March 04, 2010
New Webroot CEO sets out his stall at RSA and promises change and refocused business
read more..
|
| |
March 05, 2010
Microsoft readies two patches for Windows, Office flaws
read more..
|
| |
March 05, 2010
What is your firewall log telling you - responses
read more..
|
| |
March 04, 2010
FBI Embeds Cyber-Investigators in Ukraine, Estonia
read more..
|
| |
March 05, 2010
RSA Conference 2010 and Security B-Sides Recap
read more..
|
| |
|
 |
| |
 |
|
