Aduits and Security
Goode Cyber security also has experience responding and passing Security audits.
1.Annual SOC 2 Type 2 Audit performed by independent CPA firm
2.Annual SOC 2 Type 1 Audit performed by independent CPA firm
3.Annual HITrust Level 1 Audit performed by independent CPA firm
4.Annual Internal Penetration tests performed by Rebyc Security (EC-Council, ISACA, ISC2, and GIAC certified)
5.Annual External Penetration tests performed by Rebyc Security(EC-Council, ISACA, ISC2, and GIAC certified)
Additional Industry Security Assessments Passed completed:
1.Charles Schwab Insider & Third-Party Technology Risk (ITPTR) | Information Security Risk Assessment
2.Fidelity ESR Onsite Risk Assessment (every other year )
3.T. Rowe Price Vendor Security Assessment (every year) l
4. Comcast Third Party Security Assessment
5. United Health Group UHG EIS Vendor Information Security Risk Assessment with HITRUST controls.
6. Hospital Corporation of America - Security Risk Assessment
7. Sodexo Third Party Security Assessment
8 FINRA security exam
Meets or exceeds all SPARK Data Security Industry Best Practices Standards
Goode Cyber Security can asses your organization's current operations and the frameworks you already have in place and determine if there are any gaps or outdated components . We can then deliver a comprehensive plan to fill in the gaps or upgrade the outdated components. We have experience with several frameworks including NIST.
In addition we can review all of your security polices and make sure your policies are up to date and appropriate for your IT organization as well as all employees.
A typical organization should have between 28-35 separate security policies to cover IT and all employees.