DigitalDefence
Home > Advise

Advise

chess

Effective data security and privacy requires effective organizational governance. Leaders must possess the knowledge and resources to protect data against loss or a security breach. Unfortunately, many organizations lack the time and resources to devote to security leadership.

DigitalDefence’s Advisory Services are designed to give your organization the quick start and structured support to develop and maintain your security program. These services are directly derived from your organization’s business strategy and practices—recognizing that true security is more than a technology solution.

pdf_icon ADVISE Services Datasheet; .pdf, 77 kb



Security Strategy

An effective security strategy allows you to take a cost-effective and proactive approach to effectively developing an enterprise-wide approach to current and evolving security threats. DigitalDefence’s Security Strategy service includes:

  • Security strategy and roadmap development
  • Alignment of security strategy to business strategy and practices
  • Risk assessments, using quantitative (Threat risk assessments, TRAs, using the Canadian Federal government methodology) and qualitative methodologies (Facilitated Risk Assessment Process, FRAP)
  • Management of security-focused projects
  • Contingency planning, including business continuity planning (BCP) and disaster recovery planning (DRP)
  • Benchmarking and reporting of security initiatives
Read more >>

Policies, Compliance and Controls

Effective, enforceable, and documented policies, procedures, and practices are essential in ensuring that you’ve fulfilled legal, regulatory, and acknowledged “most effective” requirements to protect your sensitive data. DigitalDefence helps you to meet these objectives by :

  • Reviewing existing policies to identify gaps against industry most effective practices
  • Rapidly developing new policies and practices, as well as supporting standards and procedures
  • Establishing plans for policy maintenance and enforcement
  • Ensuring security and privacy compliance
  • Recommending and implementing appropriate controls
Read more >>

Security Awareness

Technology alone will not secure your organization. Employees are the ‘first responders” to any security incident, and their level of security awareness is directly related to their adherence of your security policy and procedures. DigitalDefence works with each client to:

  • Identify the focus for the security awareness program
  • Using online surveys and assessments, define baseline security knowledge, practices and attitude
  • Develop and deliver customized security and privacy awareness training
  • Deploy customized communications materials (newsletters, posters, etc)
  • Manage program delivery, including status reporting
  • Ensure program updates in response to new threats, changing technologies and regulations
Read more >>