Appeltech LLC
Network and Security Solutions
Client Login
Security Services
Assessment
Independent audit of your security.
Security Program
Build a proper security program.
Penetration Test
Test your existing infrastructure.
Security Buzz
-
White Hat Hacker
A hacker who uses his skills to help organizations. Non-malicious intent, only there to help. -
IDS/IPS
Intruder Detection and Protection Systems. Can help prevent, intercept and detect attacks. -
Defense in Depth
Overlapping areas of security defenses which can prevent multiple attacks.
Security and Network Consulting
A helping hand to assist your company through the security hurdles
Puzzled at your next step? It can be a daunting task bringing your company into the security realm. Many of the larger security firms cost a significant amount of money for assessments. I specialize in helping smaller clients that might not have the need for intense compliance auditing but want to get their company on the right track of being secure and prepare for future compliance concerns.
Important Security Dates
- 2002 (SOX)
- Sarbanes-Oxley
Enacted to increase public trust in accounting and reporting practices. - 2002 (FISMA)
- Federal Information Security Management Act
Network Security audits of U.S. government and affiliates. - 2000 (HIPAA)
- Health Insurance Portability and Accountability Act
Addressed the issues of health care personal information and privacy. - 1999 (GLBA)
- Gramm-Leach-Bliley Act
Removed antitrust laws from insurance companies, securities firms and banks from combining and sharing information.
CIA Security Triangle
Confidentiality
Integrity
Availability
The standards of the security realm. Wikipedia gives a more detailed description but the basics are; Disclose information only to those that have authorization (Confidentiality).
Is the information and the data trustworthy? Has the data not been modified without authorization with malicious intent or by accident? (Integrity).
When the data is needed is it accessable? Are the systems that need to meet this requirement functioning correctly? (Availability).
Other aspects fall under the CIA umbrella such as; Access Control, Risk Management and Prevention, Controls, Cryptography and many others.