Eclipsecurity, Information Security Consulting Services

Enhance Services

Change Management
Configuration & Patch Management
Identity & Access Management
Security Policy Development
Security Staff Augmentation
Self-Assessment Consulting

Eclipsecurity Policy, Standards, and Procedures Development

Because...

Corporate security mandates are required for effective information security enforcement

Information security enforcement mechanisms are nonexistent, not formalized, or erratically maintained

You have new vendors, business partners, or contractors

You increasingly rely on temporary employees

Eclipsecurity develops and executes customized information security policies, standards, and procedures applicable across your organization, including temporary employees, contractors, vendors, and business partners.

Eclipsecurity Approach

We implement a 2-phase process to ensure the development of strategically aligned security policies, standards, and procedures.

Phase I: Enterprise Security Policy Management Framework Strategic Planning

Establish enterprise security policy management framework oversight committee
Review corporate strategic imperatives and assess their current risk profile
Determine structure and scope of intended security policies, standards, and procedures
Address international, cultural, and legal variables which may require local variances to global enterprise policy
Design and gain consensus to enterprise security policy management framework
Define delivery mechanisms to train all personnel and measure enforcement of new procedures
Develop scorecard to evaluate ongoing effectiveness of policies

Phase II: Enterprise Security Policy, Standards, and Procedures Development

Establish enterprise security policy working group
Draft, present, and implement optimized security policy, standards, and procedures manual based on scope identified in Eclipsecurity strategic planning phase or by client team
Monitor, measure, and update policies, standards, and procedures on ongoing basis

Eclipsecurity provides Security Policy, Standards, and Procedures Development services to both single-facility organizations and global enterprises with internationally distributed subsidiaries.

Related Eclipsecurity Services

Assess Services:	Corporate Security Policy Gap, Enterprise Security
Prevent Services:	Regulatory Compliance Consulting, Security Training
Enhance Services:	Configuration & Patch Management, Security Staff Augmentation