• Home
  • Assessments
  • Cyber Leaders
  • Why Us?
  • Security Blog
  • About Us
  • Careers
  • Contact Us
  • Books
  • More
    • Home
    • Assessments
    • Cyber Leaders
    • Why Us?
    • Security Blog
    • About Us
    • Careers
    • Contact Us
    • Books
  • Home
  • Assessments
  • Cyber Leaders
  • Why Us?
  • Security Blog
  • About Us
  • Careers
  • Contact Us
  • Books

All Phases of the Audit Life Cycle

Preparation

Preparation

Preparation

We can help you prepare for or implement the audit requirements of your choice. 

Audit

Preparation

Preparation

We can perform independent audits to help ensure your customers that you're compliant. 

Remediation

Preparation

Remediation

We can help remediate/manage deficient findings from audits. 

Assessments

FISMA Maturity MOdels

FISMA maturity model assessments don't just ask if you're checking the box, they ask how well you're checking the box. The best part is that the goal maturity score can be as good or as bad as the business wants. FISMA maturity models range from Level 1 Ad Hoc and got to Level 5 optimal. Our CEO has transformed one agency from level 2 to level 4 in just 2 years without increased cost. 


Meeting requirements that match the risk tolerance of the organization is what makes Derfel Security LLC so unique. 

NIST 800-53 - A&A

NIST 800-53 A&A (Assessment and Authorization) is a US-based risk management framework and corresponding security controls. Do you have logging centralized? Do you log in with do factor authentication? Do you take privacy training? 


This risk management framework can be your best friend or your worst enemy as being deficient can be more time consuming than meeting all requirements. While these are requirements for government agencies, the framework is widely adopted around the world due to its free nature. 


Just remember that to survive a bear (hacker) attack, you just have to outrun your competitors. NIST should be the baseline not the end goal which is what makes Derfel Security LLC so unique. . 

ISO/IEC 27001

ISO/IEC 27001 is an internationally recognized framework for risk management and corresponding security controls. Do you have logging centralized? Do you log in with do factor authentication? Do you take privacy training? 


This risk management framework is widely adopted due to the sponsor organization being internationally recognized. 


Just remember that to survive a bear (hacker) attack, you just need to outrun your competitors. ISO/IEC 27001 should be the baseline, not the end goal which is what makes Derfel Security LLC so unique. 

Other Cyber Audits

Audits in Cybersecurity are numerous as each data type has different requirements. Derfel Security LLC can help you meet requirements for Health Care, Classified, IRS Tax, and so much more. Any requirement is within our ability to help you meet based on your business needs. 

Copyright © 2021 Derfel Security LLC - All Rights Reserved.

  • Home
  • Assessments
  • Cyber Leaders
  • Why Us?
  • Security Blog
  • Careers
  • Contact Us

Powered by GoDaddy Website Builder