The most important factor in your selection of an information security service provider is the engagement team. The quality of service you will receive will only be as good as the people assigned to the engagement. ISGRM will never provide a new college graduate, trainee or intern to perform your project. All of our security professionals brings several years of practical consulting, technical and security experience and understands your your business and the need to be effective and efficient while meeting each and every objective you have set forth. The combination of our skills, coupled with our expertise and knowledge of information security vulnerabilities, exploitation techniques, penetration testing, and general information security technology will ensure that you will receive a high value security advisory service for your organization.

• Governance, Risk and Compliance: ISGRM Governance, Risk and Compliance Assessments assist financial Institutions in meeting their compliance objectives by identifying the overlap between best practice standards (such as ISO17799/27001, ISF Standards of Good Practice, NIST, and COBIT) and assisting with compliance to NCUA, FFIEC regulatory audit requirements, GLBA, and HIPAA regulations. ISGRM Security Programs and Policy Services help the institution develop, improve, and communicate security policy and strategy. ISGRM security professionals assist financial Institutions with the entire lifecycle of the institution’s security programs and policies. Leveraging its extensive experience in providing security, compliance and audit services, ISGRM recommends practical best practice measures to align security practices with specific compliance and business objectives from the boardroom to the NOC.

• Technical Services: ISGRM technical assessment services range from enterprise-wide evaluations to individual program and code-reviews, including network and application vulnerability assessments and penetration tests, and detailed security assessments. From complex network implementations to firewall and application integration, ISGRM employs a detailed and comprehensive methodology for responding to computer security incidents. Based on the five cornerstones of effective incident management and response—detection, assessment, forensics, containment and recovery. ISGRM Managed Incident Response and Forensics Services leverage industry best practices to provide a complete and measured response to any security breach.

• Payment Card Industry: ISGRM offers a range of comprehensive, customized PCI compliance solutions that objectively match each requirement to the best possible solution for your issuers and acquirers. We help clients meet their compliance objectives to industry-specific requirements.

• Application Security: ISGRM can help customers with tactical assessment needs (black box testing, code review) as well as with strategic application security initiatives (SDLC consulting, developer awareness and training and project management).

Please use the upload file box above to submit your RFP to us and we will respond to your request. or call (727) 537-9273 or by completing our Online Inquiry Form. We appreciate your business.