Frameworks & Standards
Frameworks and standards are help enterprises to understand, measure, and determine their security posture in a repeatable standard way, and to easily convey this to others.
Maintaining and improving the organizational cybersecurity posture requires organizations to regularly create, review, update, and map standards. This ensures that policies incorporate new threats, risks, and technologies such as Open Banking, Cloud computing, and AI. By leveraging established frameworks and standards, organizations can develop robust cybersecurity strategies, enhance their overall security posture, and maintain compliance with regulations.
- Creation, review, and mapping of standards
- Customized development of NIST Cybersecurity Framework (CSF), and NIST Risk Management Framework (RFM)
- Updating policies throughout an organization to include security, privacy, cloud, etc.
- Cloud Computing Architectural Framework
- NIST, COBIT, OpenSAMM, BSIMM, OWASP, SANS, CVSS, CWE, CAPEC, CERT, and FFIEC Handbook, SoX 404
- Cybersecurity Framework
- CMMI, Six Sigma