To help organizations comply with
Regulatory Compliance, Security Standards
have been created to help organizations
protect Personally Identifiable
Information (PII) and all related
transactions. These standards encompass
administrative procedures, technical
security services and physical safeguards.
Security Standards compliance and overall
regulatory compliance outlined by the
various compliance initives (below) is
imperative to the ongoing business
operations of companies. Failure to be
regulatory compliant a may not only result
in regulatory actions, such as fines, but
also direct business loss from lawsuits,
damage to reputation and degradation of the
public’s trust.
 |
PCI DSS Compliance |
| If you handle any form of payment card
data, you are required to meet
Payment Card Industry (PCI) Data Security
Standards (DSS) Compliance
regulations. All organizations are required
to protect the privacy and confidentiality
of the data and must have policies and
procedures in place to do so. SecureOvercast
provides several PCI related solutions for
all industries with services such as PCI
Readiness Reviews, PCI Gap Analysis, PCI
Mock Audits, and also assistance with PCI
SAQ. |
 |
HIPAA Compliance |
| The Health Insurance Portability
and Accountability Act (HIPAA) was
created in 1996 to assist in the
simplification of administrative processes
and the protection of Personal
Identifiable Information (PII) and
Personal Healthcare Information
(PHI) of healthcare organizations.
There are specific information security
standards that are set by HIPAA that require
policies and procedures to be in place in
handling personal information to meet
compliance requirements. SecureOvercast has
extensive xperience in assisting healthcare
organizations and can create a specialized
information security package to meet your
needs. |
 |
FISMA Compliance |
| The Federal Information Security
Management Act (FISMA) of 2002 was
developed for federal agencies and their
affiliates to protect government
information, operations and assets against
security threats. Each agency is responsible
to ensure information security in the
federal government. SecureOvercast can
assist in the annual reviews of information
security programs that the act requires. |
 |
ISO 27001/27002 |
| ISO 27001/27002
are International Code of Practice for
information security management systems and
offers standards to meet certification.
Organizations certified to these standards
have demonstrated that their ISMS is
recognized globally to be following best
practice procedures. SecureOvercast provides
network security services to assist
organizations become certified. |
 |
GLBA/FFIEC
Compliance |
| Established by the
Gramm-Leach-Bliley Act (GLBA) of
1999, all Financial Institutions in the
United States are required to create an
information security program that secures
customer financial information data,
protects the financial information from
security threats, and denies any unwarranted
access to the financial data. The
Federal Financial Institutions Examination
Council (FFIEC) assists the GLBA by
creating constantly changing and extensive
compliance guidelines. SecureOvercast can
assist through the regulatory process and
provide audits to meet compliance and avoid
high penalties. |
 |
SOX Compliance |
| The Sarbanes-Oxley Act (SOX)
of 2002 requires that all publicly held
companies must establish internal controls
and procedures for financial reporting to
reduce the possibility of corporate fraud.
Your entire IT infrastructure - from server
and network security to IT practices and
operations - must be reinforced and
configured to maintain and demonstrate
compliance in the event of an audit.
SecureOvercast can help you establish and
maintain SOX compliance, and provide you
with the expertise to understand any issues
in your infrstrucure. |
|
