Federal, Financial Services Information Security, IT Audit, NIST, FISMA, SOX, GLBA, HIPAA, FFIEC, PCI, Massachusetts Privacy Data Security, Vendor Security Risk

Tel: 617-314-9721 info@klcconsulting.net

KLC Capability Statement

KLC has received Navy Seaport-e Contract Award (7/15/2010)
KLC Consulting received a DoD contract for SMAC software
KLC Consulting received 8(a) contract, expires 5/1/2018
KLC has received a contract to conduct Third-Party Vendor Security Reviews for a Major Financial Institution
KLC formed a dedicated team for Vendor Security Review
SMAC software now has over 1.5 million downloads

Dilbert_InternetSecurityHole

Our mission: Help our customers Build, Defend, Analyze, and Counter Attack (if required) in Cyber Security

KLC Capability Statement SMAC Software Brochure

KLC profile: (Qualification)

Certification: 8(a) Certified & SDB
DUNS#: 128430050
CAGE#: 4WEW4
NAICS Code: 541512, 541511, 541513,
541519, 511210, 518210
Past Performance: DoD, DISA, Veterans Affairs
(VA)

Core Services:

Security Assessment
Third-Party Risk Management
Security Engineering
Regulatory Compliance

Qualification	Description
KLC's Qualification	KLC Consulting has over 20 years of Information Security and IT Audit services experience. We have also created the first network address changer for Windows with over 1.5 million users. Our mission is to enable federal and state government and fortune 1000 companies to secure the IT environment and reduce risks. Our experience covers different industries including government, defense, financial services, retail and aerospace. We have DoD 8570.01-M certified security, IT audit, and privacy professionals including Certified Information Systems Security Professional (CISSP) Certified Information Security Manager (CISM) Certified Information Systems Auditor (CISA) Certified Software Secure Lifecycle Professional (CSSLP) Certified Information Privacy Professionals (CIPP, CIPP/G) Certified ISO 27001 Lead Auditor Cisco Certified Network Professionals (CCNP) Juniper Certified Professionals. Security+ A+
Services	Description
Cyber Security Assessment	Independent Verification and Validation (IV&V) Help government and private sectors assess the current state of information security controls based on the government standards (NIST 800,FISMA, DIACAP, FFIEC, PCI, HIPAA, GLBA), and industry standards (ISO 27001 / 27002.) Provide expert guidance to remediate findings
Third-Party Service Provider (Vendor) Risk Management	Evaluate, design and implement a sustainable solution to assess and manage supplier and vendor security risks. Conduct fix cost third-party service provider security risk assessment based on ISO 27002 security standards. We strive to provide our customers the understanding of interdependency risks with the vendors.
Information Security Engineering	Network Infrastructure, Application Security, Cloud Computing Setup Intrusion Detection, Prevention, log analyzer for situation awareness, and counter-attack systems Research and Development for Custom Cyber Security Applications Prepare the DIACAP and FISMA Package for Certification and Accreditation (C&A) Assist the C&A process and obtain Authorization to Operate (ATO) Assess, design, implement processes and tools that will provide continuous analysis, detection, and protection of your information asset. (information security lifecycle)
IT Audit / Regulatory Compliance	Our certified IT Auditors help federal and state government, financial and banking institutions perform compliant assessment, and help address issues of the following: DIACAP FISMA NIST 800 Series (800-53, 800-37, 800-37 and more) Privacy Impact Analysis (PIA) Sarbanes-Oxley (SOX) Gramm-Leach-Bliley Act (GLBA) Financial Regulations FDIC, OCC, OTS, NCUA, (FFIEC) Payment Card Industry (PCI) Security Standard Health Insurance Privacy and Accountability Act (HIPAA) Pharmaceutical / FDA (21 CFR Part 11) Massachusetts State Data Security Privacy Regulations (201 CMR 17)

Hit Counter

Copyright © 2002-2010 KLC Consulting
All rights reserved.

Legal Disclaimer