Security | Consulting

Company Services

Our proven methodology combines information security lifecycle best practices with a client-specific engagement model to clearly define and document your information security needs, and design a process for building a successful, productive relationship based on shared expectations. Throughout our process an Education and Awareness Program is instituted to ensure program success by achieving the necessary understanding and buy-in throughout your organization. STIGroup’s Strategic, Tactical and Managed Services together make up a comprehensive approach to an Information Security Program for your business.

Strategic Services STI Group conducts a review of your business processes and the associated information flow in order to establish the risk to the business represented by current and anticipated threats to the security of your information... More
Information Flow Analysis Information Security Threat Analysis Regulatory Requirements Review Policy Gap Analysis	Information Classification Assurance Policy Usage Policy Incident Response Procedure

Tactical Services STIGroup consultants effectively integrate new security hardware and/or software, with your current technology environment – ensuring to ‘harden’ existing systems to further mitigate vulnerabilities... More
Firewall Architecture and Implementation Intrusion Detection and Prevention Systems Endpoint Security Solutions Proactive Vulnerability Scanning Tools Policies, Procedures, Standards and Guidelines Network and System Hardening/Logging	Virtual Private Networking - VPN Event Management and Logging Authentication and Identity Solutions Encryption Solutions Content Management Solutions Compliance Workshops (GLB, HIPAA, etc.)

Managed Services STIGroup consultants implement technical and procedural measures to effectively manage your information security. This proactive approach to security management ensures compliance of your technology environment with existing regulations, standards, and policies... More
Managed Security Services Security Staffing Solutions Managed Firewall Solutions Managed Intrusion Detection Solutions Managed Content Filtering Solutions	Managed Endpoint Security Solutions Proactive Vulnerability Management Incident Response and Recovery Technology Forensics Governance and Strategic Consulting

Information Security Program

STIGroup uses a proven phased approach to instituting an Information Security Program. Specifically:

Risk Assessment and Policy Development

identify and document your business-specific Information Security requirements
identify and clarify Information Security-related regulations that apply to your business

Audit and Vulnerability Analysis

identify gaps in current processes and technology implementations with regard to corporate policies and regulatory requirements
identify existing vulnerabilities to internal and external threats

Architecture, Remediation, and Certification

implement the necessary processes and technologies to fill identified gaps
verify policy/regulatory compliance and vulnerability mitigation

Information Security Management

maintain your technology environment and processes in compliance with corporate policies and regulatory requirements
monitor your technology environment for policy violations as well as immediate and developing threats

Click the Download button below to Download the STIGroup Service Methodology Overview