How may we help you?

• IT  Security Consulting


• Managed Services and Outsourcing


• Networking - WAN, VPN, LAN,  Wireless


• Regulation and Compliance


• Watchguard Security Service


• Disaster Recovery and Disaster Planning


• WatchGuard Consulting and Sales


• Data Loss Prevention (DLP)


• Messaging Security


• CIO Management Services


• John's Executive BLOG

 

 

Regulations and Compliance

IT security is imperative, especially in a day and age when hackers and e-thieves are constantly evolving their stealing techniques. The last thing you, as a business owner, want is to find out that your client data has been compromised or that your confidential company financials are floating around cyber space.  Only to make this worse is getting hit with fines for non-compliance.

There are a number of regulations out there for businesses.  HIPAA, PCI, GLBA, California CARD Act, etc.  Wading through these can be a nightmare.  All of these regulations have several components to them.  These components include technical and non technical items.

Some people think that if they aren't in healthcare they don't have HIPAA concerns.  But if you have medical data on your employees you can be audited.

If you accept credit cards then PCI is a concern.  This regulation is especially a concern for you since it is not a government guideline but a private sector one.  If you violate PCI you could lose the ability to accept credit and debit cards.  Could your business sustain that?  Can you afford the fines?  What is the date of your last audit?

Do you have any clients who reside in Massachusetts?  Have you completed the requirements that went into effect on March 1, 2010?  This is not for companies based in Massachusetts but for any business that has a personally identifiable information (PII) on any citizen of the Bay State.

The point here is the list is long and complex.  It is impossible for internal IT staff to audit the companies security for all these different layers unless you have a person dedicated to this full time.  And the problems simply are not visible to the folks who set it up.  In most cases IT staff appreciates an audit to make sure they didn't miss anything.  Additionally, some compliance regulations prevent an audit by internal staff simply to avoid this scenario where problems are overlooked.  Using an outside firm is the best way to get a fresh set of eyes on your network.

We help our clients make compliance easy.  We go above and beyond, check and recheck until everyone is satisfied.  We develop a firm plan going forward and get you back to your business.

Services we offer in compliance include:

• Security Assessments
• Security Audits
• Compliance
• Testing
• Encryption
• Identity Management
• Access Control
• Web Security

About JStengel Consulting  |  Watchguard Training Programs  |  Employment Opportunities  |  Contact Information  |  Products and Services  |  Home

© Copyright JStengel Consulting, LLC   -   All Rights Reserved.