We know many organizations are being held to high requirements based off their industry and the data they interact with. At CCSI, we work with clients across a broad spectrum of verticals that’s given us a unique insight into these regulations and how best to advise our clients not only become compliant, but secure.
DDoS Simulation and Assessment
Distributed Denial of Service (DDoS) attacks are growing and many organizations are completely unprepared or are have mitigation process that haven’t been battle tested.
The Family Educational Rights and Privacy Act (FERPA) is a federal law that offers parents particular rights when it comes to protecting the privacy of their children’s education records.
NIST 800-171 Assessment
NIST standard guides organizations with contractors or subcontractors handling CUI and how to protect the confidentiality and security of this data.
23 NYCRR 500 Cybersecurity Assessment
The New York State Department of Financial Services (NYS DFS) created a first-in-nation regulation that mandates cybersecurity standards to covered entities in New York within the financial services, banking, and insurance industries.
PCI DSS Assessment and Gap Analysis
The Payment Card Industry Data Security Standard is a regulation that effects any organization who accepts, processes, stores, or transmits credit card information. Within the regulation there are 12 requirements that can be applied to a merchant or service provider.
Understanding your weakness before you’re attacked is an important step in defending your network and data. During a penetration test we’ll simulate authorized attacks against your systems to uncover and identity weaknesses within your organization.
With increased focus by criminals to build their businesses and legitimate organizations struggling to defend against their attacks has led to the growth of ransomware.
Risk Assessment & Tabletop Exercises
At CCSI, our Cybersecurity Risk Assessment focuses on identifying risks to your sensitive data and IT assets. Tabletop Exercise evaluates your organization’s crisis processes. Each assessment and exercise is guided towards your unique needs, based on cybersecurity and compliances.