Information Assurance and Cybersecurity

Many in executive leadership will only spend enough on Technology Risk Management (TRM) and Security to the
extent they won’t be found guilty of negligence in a court of law after a breach scenario. Or, they have
identified some level of acceptable risk associated with their IT assets that falls in line with its typical break/fix
scenarios or a certain minimum level of due care associated with customer satisfaction. Only a few invest with
clarity of return on investment and a clear thought methodology leveraging information security activities into
business objectives.

As the practice of Information Assurance is ensuring that only authorized users have access to authorized information at the authorized time, PLANIT Group’s approach focuses on practical and economical solutions in project initiatives, Identity Access Management, Business Continuity, Disaster Recovery and Incident Response areas. We can work with our clients to protect their IT Assets, including their critical information, whether in functional use, storage, processing, or in transit.

Policy, project, and program initiatives present unique opportunities to create value and elevate the security posture within organizations. Identity Access Management, Business Continuity, Disaster Recovery and Incident Response initiatives, more often than not, include requirements that improve processes and upgrade technologies. Either “in the Data Center” or “at Corporate”, our professionals have performed admirably when comingling their experiences with well-grounded vision towards meeting our client’s goals.

Information Assurance

• InfoSec Policy Review & Development
• Data Discovery / Mapping
• Enterprise & Mobile Encryption
• Public Key Infrastructure
• Certification & Accreditation
• Education & Training Awareness
• Incident Response Mgmt & Program Development

IT Governance

• Business Technology Optimization
• Enterprise Architecture
• Data Governance
• IT Asset Management
• IT Security Management
• IT Service Management
• Project/Program Management and Governance

Risk Management

• Identity Access Management
• IT GRC Platform implementation
• Incident Reporting and Investigation
• Application Security Analysis
• eVulnerability and Patch Management
• Log Management & Monitoring
• Business Continuity Planning
• Disaster Recovery
• Vulnerability Scanning
• Penetration Testing
• Security Engineering Implementation (FW, DLP, IDS/IPS, SOC, AWL, AD)

Audit Compliance & Validation

• Gap assessments
• Audit Remediation services
• Specific Technology Audits
• Software Licensing Audits
• Independent Verification and Validation
• Risk Assessments
• Technology Audit preparatory engagements
• FFIEC/FISM, HIPAA, ISO 27000 / 31000 / 38500, PCI / PA – DSS, SSAE16, COBiT compliance