Cyber Security Program Assessment

Home>Cyber Security Services>Cyber Security Program Assessment

The Cybersecurity Program Assessment is a thorough evaluation of the organization’s administrative controls governing the information security program as a whole. CynergisTek conducts a thorough review of information security policies and procedures, interviews key stakeholders and conducts physical walk-throughs as part of the data collection phase. In advance of the data collection, a detailed interview schedule including topics/focus, approximate durations, and target attendees is developed and is the basis for the itinerary while our consultants are on site conducting the data collection phase of the assessment.

We strive to include a disciplined “show me” approach to establish the crucial demonstration of compliance as is typical of an OCR audit. At the client’s request our assessment can measure the elements of an organization’s information security organization against any or all (selecting the most rigorous compliance standard applicable for a given client) of the following compliance frameworks:

  • Payment Card Industry (PCI) Data Security Standard
  • FIPS Standards
  • 21 CFR 11
  • Meaningful Use
  • NIST Guidelines
  • ISO 27002
  • State Laws

Our Experts are Waiting!

Contact us to learn more about our Cyber Security Program Assessment service and how we can help your organization.

The output of the Cybersecurity Program Assessment is a comprehensive report of findings that clearly articulates the compliance status of the organization for each element of the selected compliance framework as compliant, non-compliant or not applicable. As a value-add, we also map to the COBIT maturity model to rank the organization’s maturity for each element of the selected compliance framework.

What Our Clients Say

Having a partner that is actively monitoring our systems, trends, local and global threats not only saves the Virtua IT Security team time, but provides us with the ability to proactively look at potential threats to plan accordingly. The partnership with CynergisTek has allowed us to focus on compliance, developing risk programs, policy and procedures leading to a culture focused on making us more secure.

Tom Gordon, CIO, Virtua

Security has become a necessary and critical strategic pillar for our organization, and it is too broad and complex for a provider organization to keep up with on their own. Having a partner like CynergisTek with depth and breadth of knowledge and expertise is a crucial asset for our organization. I can’t imagine navigating these issues without them.

John Mangona, Vice President, Chief Information & Compliance Officer, Saratoga Hospital

Related Resources

Cybersecurity Services

Improving Readiness: Meeting Cyber Threats | 2018 Report

The Top 20 Security Vulnerabilities Healthcare Organizations Should Address

Emerging Security Threats: Keeping Your Healthcare Organization Protected