vulnerability audit

eGov Consulting works with Public Safety agencies to evaluate how well they comply with best practices and standards for securing mission-critical systems and managing technologies effectively and efficiently.

The purpose of the audit is to examine how well the organization manages and/or supports its critical voice and data systems for communicating, storing, securing, exchanging, analyzing and reporting the critical information it uses to accomplish its mission. As part of the audit, we examine the numerous interlinked activities and processes conducted by the organization and how information technology is used.

During a vulnerability audit, our team assesses the following:

• Requirements - what is required internally and externally to reduce overall vulnerability of critical systems

• Processes - how well do agency processes support the agency's achievement of mission and the requirements

• Controls - how does the agency measure its performance against requirements, what controls exist to guide that performance and how well do they perform

• Resources - how well does the agency utilize its IT resources to minimize vulnerability.

Our team of professionals applies the latest best practices and standards for vulnerability audits, including:

• CJIS

• NCIC

• UCR / NIBRS

• NIFRS

• IAFIS

• NIST

• CobIT

• IT Infrastructure Library - IT service management

• ISO 17799 - information security management

• Capability Maturity Model - software delivery process

• COSO Framework - internal controls

home    |    our team    |   contact us                                                                                                                                                         Copyright 2006 by eGov Consulting. All rights reserved. www.egovcs.com.