Solutions & Services

  1. Trusted Managed Security Provider | Solutionary
  2. Solutions & Services
  3. Security Consulting
  4. Security Consulting Service Offerings

Security Consulting Service Offerings

Enterprise Security Management

For Solutionary, Enterprise Security Management (ESM) services build the foundation for an organization’s information security program. To ensure this foundation is sound, Solutionary’s credentialed security professionals carefully review a client’s existing security posture, developing a clear and actionable plan with key findings and strategic recommendations to improve overall security. This process includes:

  • A comprehensive risk assessment to identify key assets and the threats facing them
  • Root cause analysis
  • Detailed road mapping
  • Remediation guidance and employee training to ensure the entire organization is on board with the security program

Finally, customized tools are added to ensure the security program meets not only the client’s unique security needs, but also complements overall business requirements and goals.

Solutionary’s ESM services include:
 

  • Security program review
  • Standards-based Gap Assessments (ISO 72003, COBIT, COSO and more)
  • Policy and procedure development
  • Security awareness development
  • Executive advisory services

Enterprise Compliance Management (ECM)

Enterprise Compliance Management (ECM) services assess an organization’s environment to determine where gaps exist between the client’s existing security program and compliance-drive requirements. Solutionary’s consultants – all with the Qualified Security Assessor (QSA) certification – leverage proprietary techniques and tools to identify these gaps and outline how to close them, achieving compliance requirements. During this process, consultants work to leverage existing security and IT investments, helping to ensure technology initiatives are aligned with business and bottom-line objectives.

Solutionary’s ECM services address:
 

  • Payment Card Industry Data Security Standards (PCI DSS)
  • Self-Assessment Questionnaire (SAQ)
  • Payment Application Best Practices (PABP)
  • Regulatory-based gap assessments for HIPAA, SOX, NERC, GLBA and more

Solutionary’s ECM services include:
 

  • Gap analysis
  • Certification
  • Remediation and validation
  • Active management


Enterprise Security Assessments

Solutionary’s Enterprise Security Assessments (ESA) examine a client’s information security program from two perspectives – at both a technical and program level. By using both automated and manual techniques and leveraging proprietary and commercial tools, Solutionary’s credentialed consultants review a number of organizational programs to ensure they meet business requirements and regulatory compliance. These programs include:
 

  • Policies
  • Procedures
  • Infrastructure implementations
  • Security controls

Solutionary’s consultants – most of whom are CISSPs – also perform root cause and comprehensive threat analyses to uncover vulnerable assets and the security threats they face. To ensure the accuracy and quality of results, consultants perform false positive validation on each and every finding and provide a full report including countermeasures necessary to secure vulnerabilities and ensure compliance.

Solutionary’s ESA services include:
 

  • Vulnerability assessments
  • Penetration testing
  • Security architecture reviews
  • Social engineering reviews
  • Physical security reviews
  • Wireless security testing
  • War dialing assessments
  • Customer security assessments
  • Remediation consulting support

Application Security Assessments (ASA)

When performing Application Security Assessments (ASA), Solutionary’s consultants utilize a combination of automated and manual techniques to uncover vulnerabilities in clients’ systems and infrastructures. Both proprietary and commercial assessment tools are leveraged to best identify these vulnerabilities. To ensure the accuracy and quality of results, consultants perform false positive validation on each and every finding and all testing beyond URL scanning is performed manually.

Once identified, Solutionary’s team examines how an attacker could exploit the vulnerabilities to create a security risk or breach for the organization. The final report also includes counter measures to secure at-risk applications, assets and resources and outlines recommendations to ensure compliance with industry best practices and regulatory requirements is upheld.

Solutionary’s ASA services include:
 

  • Managed application assessments
  • Security architecture reviews
  • Remediation and training services
  • Web application firewall selection and monitoring assistance
     
Newsletter Sign-up Contact Sales Request Demo

www.solutionary.com - 866-333-2133