New York Cyber Security Program | Security  Program

Cyber Security Programs Chief Information Security Officer (CISO) service is nesscesary with so many headlines proclaiming security breaches these days, you undoubtedly have a heightened awareness of the need to protect your company by protecting your data. Our information security consulting practice is one of the few that can deliver all the components of a comprehensive information security system.

New York Cyber Security Program

  • Develop, implement and monitor a strategic, comprehensive enterprise information security and IT risk management program;
  • Ensure that disaster recovery and business continuity plans are in place and tested;
  • Review and approve security policies, controls, and cyber incident response planning;
  • Identify risks and actionable plans to protect the business;
  • Create, communicate and implement a risk-based process for vendor risk management, including the assessment and treatment of risks that may result from partners, consultants, and other service providers;
  • Manage information security and risk management awareness training programs for all approved systems users;
  • Provide regular reporting on the current status of the information security program to senior staff and the board of directors;
  • Coordinate information security and risk management projects with resources from the IT organization and business units;
  • Ensure continued compliance of the security programs with all applicable laws and regulations;
  • Oversee identity and access management;
  • Review investigations after breaches or incidents, including impact analysis and recommendations for avoiding similar vulnerabilities;
  • Manage security incidents and events to protect corporate IT assets, including IP, data and company reputation;
  • Conduct periodic security audits;
  • Responsible for the implementation and maintenance of the most current version of the CIS 20 Critical Controls;
  • Maintain a current understanding of the Cyber threat landscape;
  • Ensure that all cybersecurity policies and procedures are communicated to all personnel and that compliance is enforced;
  • Coordination of all employees, contractors, and vendors involved in IT security;
  • Provide training and mentoring to security team members;
  • Security Program Constantly update the cybersecurity strategy to leverage new technology and threat information
  • Coordinate security tool deployment and implementation;
  • Serve as the expert advisor to the executive team on status and risks, conduct research and provide updates on industry standards;
  • Security Programs Operate as the CIS lead on the CIS Board of Directors Risk Committee;
  • Oversee the overall security architecture, strategy, and necessary budget;
  • Security Programs Communicate best practices and risks across the organization.
  • Other Cyber Security Programs duties as assigned
  • Asset and Data Management knowing what you have, and where they are