Why maintenance of the information security program is needed on an ongoing basis?

• Quarterly updates to Risk Register, Treatment Plan, and Executive Dashboard
• Presentation to Leadership and Board on recurring basis

Maintains Your Risk and Security Operations through:

• Management of risk remediation projects and dashboard
• Risk register updates of new threats and vulnerabilities
  Tracking of risk level reductions per risk treatment
• Continuous analysis of threats that are causing reported security breaches in your industry
• Development and updates to policies
• Leading incident investigations

• Implementation and Maintenance of the
  • Security Training Program
  • Vendor Risk Management or TPRM Program

• Oversight of Operations for:
  • Pen Testing Program
  • Sensitive Data Scanning as a Service (SDSaaS)
  • Incident Response Readiness as a Service (IRRaaS)
  • Compliance Maintenance Program (PCI, HIPAA, CMMC, Privacy)

Provides Industry Insight with Subject Matter Experts (SME) Advisory

Fractional Full Time Equivalent (FTE) team member to address personnel needs for engineering, governance, audit, compliance, executive engagement, or experienced practitioners for remediation optimization.

AUDIT & COMPLIANCE OVERSIGHT

• Guidance for incorporating measures and metrics into individual control development
  
• Develop a high-level audit plan
  
• Integrate audit findings into the Risk Register to evaluate the effectiveness of controls
  
• Prepare for internal and external audits

HALOCK is a cyber security company headquartered in Schaumburg, IL, in the Chicago area and advises clients on reasonable information security strategies, risk assessments, third-party risk management, penetration testing, security management and architecture reviews, and HIPAA, Privacy, & PCI compliance throughout the US.

Contact Us