Security Touchstone Certification Services
Measure your performance against key industry standards and regulations
Delivered by our team of certified security practitioners, our Security Touchstone Certification Services cover four main standards/regulations: For organizations that achieve a rating of 3 or higher, we will issue a "Certificate of Security Achievement." This certificate demonstrates that you are meeting certain regulatory and compliance thresholds and/or the ISO 17799:2005 standards. In addition to providing the certificate, Allied InfoSecurity can attest to the merits of your information security program to your customers, business partners, and other third parties.
Our Security Touchstone Certification Services cover four main standards/regulations:
Best Practice ISO 17799:2005 and 27001 Certification
Allied InfoSecurity provides your organization with a clear, quantitative view of your performance versus the world’s most respected information security standards and certify your efforts accordingly. Allied InfoSecurity's proprietary methodology combines an in-depth approach with rapid delivery—enabling us to address all 11 “clauses” outlined in the discipline of ISO 17799.
HIPAA Touchstone Certification
Allied InfoSecurity helps healthcare organizations and other covered entities to assess and develop comprehensive information security programs vis-à-vis the Security standard within the Health Insurance Portability and Accountability Act (HIPAA).
VISA PCI Touchstone Service
Merchant banks, service providers, and credit-card issuers are wrestling with the standards established for the payment card industry. Allied InfoSecurity helps these organizations to develop and evaluate pragmatic information security programs based upon the revenues derived from the credit-card industry.
GLBA Touchstone Certification
Allied InfoSecurity helps financial services organizations to build and validate information security programs as required by the Gramm-Leach-Bliley Act (GLBA). Our approach focuses on administrative, technical, and physical safeguards that are appropriate based on each organization’s size, complexity, scope of activities, and the sensitivity of customer information at issue.