About Sword & Shield
Since 1997 Sword & Shield has been the trusted information security partner for 3000 clients in 50 states and 27 countries around the globe.
We offer comprehensive computer network security services and IT regulatory compliance for business and government. Let us help secure your future.
Request Consultation
Company News
-
FFIEC / GLBA
Since the Gramm-Leach-Bliley Act (GLBA) of 1999, federal regulators increasingly expect financial institutions to implement strong and regular comprehensive IT audits (gap analysis and risk assessments) to protect their customers’ private financial information.
Regulators want banks and credit unions to place a greater emphasis on the competency of their technology and the information gleaned from a bank’s audit provider.
But not all vulnerability scans and IT audits are alike.
Sword & Shield uses multiple scanning tools to identify vulnerabilities that a hacker may find and exploit to gain access to sensitive information. Our customized reports provide findings and recommendations suitable for the executive and detailed enough to provide specific direction to the technical staff to reduce or eliminate the vulnerabilities.
We are NOT an auditing firm or IT service provider who decided to add security consulting to our offerings – our core business is security and we provide industry-specific soluitions to a number of businesses, including the financial sector.
Sword & Shield can bring you into compliance with GLBA while making sure that your security policies are effective. Using the FFIEC Information Security Booklet as a guide, we can assist you with maintaining compliance by integrating people, processes and technology and by applying prevention, detection, response, security domains, least permissions and least privilege strategies. In addition, independent security audits, vulnerability assessments, penetration tests, are prescribed to determine the effectiveness of the security controls and continuous monitoring of security controls is not just a once a year event.
Effectiveness of Security Awareness Training
Sword & Shield provides security awareness training delivered via the web that you can customize with your own security policies. Testing and tracking employees against the training requirements is included. The web-based portal also allows employees to read and electronically sign acceptable use policies to ensure that all employees understand what is being asked of them.
We also perform up to four “social engineering” tests – phishing, pre-texting, baiting and tailgating – to test your current security awareness training program.
Effectiveness of Incident Response Plan
Sword & Shield can audit and evaluate your incident response plan to dictate actions should a breach occur. Our Rapid Response Shield provides a cost-effective way of identifying what happened, what action was taken, how the hacker or hackers got into the network and what you can do to prevent a recurrence.
Our forensics lab can collect and protect evidence to insure chain of custody handling in the instance of litigation concerns. We provide the mission link between legal counsel and IT because we understand what corporate counsel needs and how to cost-effectively extract the information from IT resources – saving you time and money.
Sword & Shield can also help you analyze where potential data leaks my occur, develop policies to prevent this and systems to enforce those policies. Encryption is a big part of the solution.
Find Out More
Sword & Shield has been outsmarting cyber-criminals and improving security for enterprises around the world since 1997. Fill out our Consultation Request form or contact us by phone so we can begin securing your future.
U.S. Toll-free: 800-810-1885
International: 865-244-3500
Request a Consultation