Preventing government-targeted cyber attacks is a critical concern for government agencies and the public alike. True has the expertise to consult with government agencies at all levels to help improve their security infrastructures and protect their information assets and sensitive information.
True can perform Information Security Risk Assessments for government agencies using the SANS Twenty Critical Security Controls for Effective Cyber Defense, the centerpiece of effective security programs across government, as a baseline for the assessment. The twenty specific technical security control areas include multiple individual subcontrols that specify actions an organization can take to help improve its defenses. Our consultants can also review your agency’s procedural and physical security controls, following the ISO 27002 baseline, which fall outside the Twenty Critical Security Controls scope, but are equally important to sustaining a strong security program. True’s professional assessment report will provide prioritized recommendations for implementing and maintaining all recommended controls for your specific agency.
True understands the compliance obligations government agencies are subject to ranging from FISMA directives to Sarbanes Oxley and PCI. Experts at True currently perform any number of the following services for our government agency clients to assist in meeting these objectives.
- Information Security Risk Assessment
- Network Vulnerability Assessment
- Penetration Testing
- Security Program Development
- PCI ASV Scanning
- Managed IDS Services