|
"An hour of security planning is worth a
day of remediation" -- Kyle Lai, President, KLC Consulting
KLC Consulting - Your Compass In The Midst of
Chaos!™
Capability Statement
Achieving security for your corporate information assets and
compliance to new regulations demand constant vigilance and knowledge
of what to look for.
|
Qualification |
Description |
|
KLC's Qualification |
KLC Consulting has over 19 years of
information security and IT
services experience. We enable federal and state
government, Fortune 1000
and small to medium size companies to secure their IT environment and
reduce risks. Our experience covers different industries
including government, defense, financial, banking, retail, law
firms, law enforcement, utility, manufacturing, and
aerospace.
We have certified
security and IT audit professionals including Certified
Information Systems Security Professional (CISSP),
Certified Information Privacy Professionals (CIPP,
CIPP/G), Certified Information Security Manager (CISM),
Certified Information Systems Auditor (CISA),
Certified ISO 27001 Lead Auditor, Cisco Certified
Network Professionals (CCNP), Juniper Certified
Professionals.
|
|
Services |
Description |
|
Security Assessment |
Help government
and private sector to assess the current state of
information security based on the government standards (NIST,
DIACAP), and industry standards (ISO 27001 / ISO
27002.) We also provide recommendation for
each finding. |
|
Third-Party Service Provider
(Vendor) Risk Assessment and Management |
Evaluate, design and
implement a sustainable solution to manage supplier and
vendor security risks.
Conduct fix cost
third-party service provider security risk assessment
based on ISO 27002 security standards, to provide
organization an understanding of interdependency risks
with the vendors. |
|
Information Security Consulting |
Help
organizations to evaluate, design and implement
solutions that will
provide a continuous effort to protect the confidentiality, integrity, availability,
privacy of your corporate resources and data.
Through each stage of the
information security
lifecycle, we help you
prevent, detect, respond, and resolve your enterprise security
issues. |
| IT Audit
/ Regulatory Compliance Audit |
Our certified IT Auditors
help federal and state government, financial, retail,
banking, law firms, utility, and manufacturing
organizations to perform compliant assessment on
following regulations for
-
Sarbanes-Oxley
(SOX)
-
Gramm-Leach-Bliley
Act (GLBA)
-
FFIEC -
Financial Regulations under FDIC, OCC, OTS, NCUA, Federal Reserve
(FRS)
-
Payment Card Industry (PCI)
Security Standard
-
Health
Insurance Privacy and Accountability Act (HIPAA)
-
Pharmaceutical
/ FDA (21 CFR
Part 11)
-
Privacy Regulations
|
|
