Well-documented policies and procedures are the hallmark of an effective information security and compliance program. We can develop new policies and procedures or review and update existing policies and procedures. Various regulations and frameworks call for comprehensive policies and procedures.
Achieving readiness or certification on a regulation or framework typically involves a gap assessment. We conduct your gap assessment and provide you with a report and remediation roadmap for frameworks & regulations such as ISO 27001, SSEA 18 SOC2, PCI-DSS, NIST-CSF, and many more.
Health Insurance Portability and Accountability Act (HIPAA), a Federal legislation that promulgated in 1996 requires the US Department of Health and Human Services (HHS) to develop national standards to protect the privacy and security of patients’ medical records and other personal health information.