FoundSecure
Foundstone's FoundSecure Program
Foundstone's FoundSecure™ program affirms the security posture of leading organizations. The FoundSecure Seal is awarded to those organizations that have undergone a detailed Foundstone assessment; mitigated their identified exposures to security risks and continue to proactively support and maintain their security posture.
FoundSecure effectively combines security consulting services with an automated assessment service to verify that a company continues to support and maintain the security surrounding their environment.
The Benefits:
The many benefits an organization may experience by being qualified under the FoundSecure program include:
- Reassuring clients that an organization is being proactive about security
- Increasing consumer confidence in conducting business with the participating organization
- Allowing business partners to focus on the relationship at-hand, not the other organization's security posture
- Addressing industry and regulatory security policies and regulatory requirements
- Satisfying HIPAA requirements for audit
- Potentially reducing costs of business interruption insurance premiums
- Providing a level of comfort to potential investors or financing entities
Our Competitive Edge:
There are other assurance programs within the information security industry; however, Foundstone's FoundSecure program differentiates itself in the following ways:
- FoundSecure is an independent review of an organization's security posture; as opposed to a review of a company's written policies or audited financial statements
- FoundSecure methodology addresses the technical security layer of data processing, not just the application or general controls level
- FoundSecure will assess your exposure to "hackers" in a manner that a SAS #70 (an operational audit resulting in a report on the processing of transactions performed by a service organization) review does not address
- FoundSecure mitigates the risk exposure that a "hacker" may use to compromise your organization's data integrity, privacy and ownership
- FoundSecure can be an essential part of your organization's compliance with Gramm-Leach-Bliley's Safeguarding Rules
- FoundSecure is conducted in accordance with Foundstone's proven methodology, which is structured based upon the principles defined within ISO/IEC 27002
The Methodology:
The methodology supporting the FoundSecure program is based upon Foundstone's industry recognized approach to vulnerability assessments as documented in our "Hacking Exposed" publications, and consistently executed on service engagements with clients.
Professional Service Assessment + Foundstone Managed Service + Maintenance = FoundSecure
Contact us to learn how our security services can help you protect your most important assets today.
