Private Information Security
Consulting, Implementation & Training Services

pINFOSECSM offers information privacy and security advisory, assurance, consulting, implementation, audit and testing services for individuals, businesses and government agencies. pINFOSECSM takes a forward-looking position of what is considered personal data based on the myriad of international laws and regulations to respect personal preferences and goes beyond compliance.

Protection through Prevention

  • Empowering individuals to protect their own private and sensitive data from identity thieves and others
  • Providing small businesses intellectual property and critical information asset identification and protection services
  • Technical and business process solutions and services for regulatory compliance

Personal Information Security

  • Public Group Training Workshops
  • Private Group and Executive Management Team Training Workshops
  • Individual, Family & Group Private Information Security Consulting, Assessments, Implementation Planning & Testing

Business

  • Full-day Privacy Workshops, providing facilitated self-assessment for compliance, with follow-up report option
  • Privacy Assurance, Audit Services
  • Personally Identifiable Information (PII) & general Security Awareness Training
  • Privacy & Security Assessment, Evaluation and Penetration Testing
  • Mystery Shopper Programs
  • Assess privacy impacts of new systems and changes to existing systems
  • Technical and business process solutions and services for regulatory compliance
    • Payment Card Industry Data Security Standard (PCI-DSS)
    • Fair and Accurate Credit Transaction Act (FACTA)
    • Fair Credit Reporting Act (FCRA)
    • Gramm-Leach-Bliley Act (GLBA)
    • Health Insurance Portability and Accountability Act (HIPAA)
    • Safe Harbor
  • Auditing Vendor Privacy Practices
  • Chief Privacy Officer Services
  • Privacy Subject Matter Expert (SME) Services

Government

  • Privacy Impact Assessments (PIA)
  • Personally Identifiable Information (PII) & general Security Awareness Training
  • Privacy & Security Compliance Assessment, Evaluation and Penetration Testing
  • Privacy Subject Matter Expert (SME) Services

Implementation Services

Providing project management and staff augmentation services in the following areas:
  • Privacy Program Governance Support
  • New Regulations Change Management
  • Policy and Procedure Audits
  • Separation of Duties
  • Training
  • Intrusion Prevention and Detection
  • Data Classification Enterprise Application Infrastructure
  • Encryption (communications, storage)
  • Database Security / Scanning
  • Audit Logging and Monitoring
  • Identity and Access Management
  • Data Element Inventory
  • Content Monitoring
  • Data Leak Prevention
  • Network Access Control
  • Security Configuration Management (networks, endpoints, hosts & clients)
  • System Application Security Design and Development Process
  • Operating System Hardening
  • Antivirus
  • Patch Management
  • Certification & Accreditation Testing