|
|
|
|
|
|
Our Team
|
Threat Mitigation Division’s experts are uniquely prepared to address your organization’s
information security needs through our combination of business backgrounds and security
acumen. Our clients consistently praise our commitment to helping them achieve compliance
in an efficient and effective manner that is sensitive to their business needs.
Our experts possess extensive experience working in the private, government, and
education sectors as information security officers, program managers, and technical
specialists. Our certifications include Payment Card Industry Qualified Security
Assessor
(PCI QSA), Payment Application Qualified Security Assessor (PA-QSA), International
Standards Organization (ISO) Lead Auditor, and Certified Information Systems Security
Professional (CISSP). The majority of our staff hold graduate degrees at the Masters
(M.A.) and Doctoral (Ph.D.) levels. We bring these many qualifications and broad
range of experience to create proven, unique, comprehensive and highly consultative
solutions to your organization’s long-term information security and business needs.
|
|
|
|
Our Global Reach
|
|
igxglobal, Inc. serves clients throughout the United States, Europe and Asia. igxglobal
is one of only several companies certified to provide assessments to organizations
in the six major world markets of Europe, Middle East, Asia Pacific, Africa, Latin
America, Canada and United States. Our Threat Mitigation experts leverage their
experience working in Europe and Asia Pacific to address the regulatory and information
security requirements of our international and multi-national clients.
|
|
|
|
Why We Are Different
|
|
Our clients consistently praise our unique approach and commitment to helping them
achieve their objectives in an efficient and effective manner. In fact, over the
past several years our client repeat-service rate has consistently been over 80%.
Consider our differences from other auditors and assessors:
|
|
|
|
1. Emphasis on Clients’ Business
|
|
Data Flow Analysis: We work with you to identify
your critical data, then analyze how the data flows through your organization’s
network components, systems, and personnel. In your report, we provide a data flow
diagram that many of our clients find invaluable for future initiatives.
|
|
|
|
|
Prioritized Recommendations: Rather than providing
you with a complicated list of recommendations, we categorize and then prioritize
recommendations according to your organization’s unique security and business needs.
|
|
|
|
|
Balance Business Objectives with Risk: We recognize
that your organization’s primary goal is to fulfill its business objectives. We
carefully analyze the potential impact of identified vulnerabilities then develop
and prioritized recommendations to balance your business objectives with risk mitigation
needs.
|
|
|
|
|
2. Approach to Assessments
|
|
|
Collaborative Approach: We work with you to understand your needs, environment, vulnerabilities and recommendations. We collaborate with you to tailor your report to best suit your needs, providing the opportunity for feedback into the report and conducting presentations and debriefs as you require.
|
|
|
|
|
Overall and Long-term Security Posture: When evaluating your environment and security risks, we consider both your current state and long-term security posture. This perspective is reflected in method with which we identify risks to your organization and the quality of our recommendations.
|
|
|
|
|
3. Focus on Knowledge Transfer
|
|
|
Meetings and Documentation: Before and throughout the engagement, we meet with your team to maximize the efficiency and effectiveness of our efforts. Our reports are clear concise and actionable. They include an Executive Summary for management as well as a current state assessment, description of identified vulnerabilities, and details for remediation.
|
|
|
|
|
Monitoring and Updates: Many of our clients engage us to provide support after the engagement to help them make business decisions that may impact their security and provide updates for regulatory and technology changes.
|
|
|
|
|
4. Expertise
|
|
|
Industry Certifications and Ph.D.s: Most of our staff hold graduate degrees at the Masters (M.A.) and Doctoral (Ph.D.) levels, in areas such as information security, digital information and statistics.
|
|
|
|
|
Extensive Business Experience: Our experts all possess strong business experience, which enables us to understand both the balance between your business objectives and security needs and to create proven, unique and comprehensive solutions to your needs.
|
|
|
|
|
