Capsicum’s Information Security Assessments focus on your organization’s electronic assets.   We employ a “top-down” approach to evaluating the security of your information, beginning with policies and procedures.   Capsicum will sit down with key staff members and conduct face to face interviews.   We will learn what data is important to your business and what measures you are taking to secure it. 

The next phase of our assessment involves verification that the policies and procedures you have in place are actually being followed and enforced.   Through interviews and both, automated and manual checks, we audit many aspects of information security including:

• Access Control
• Communications and Network Security
• Application, Web, and Database Security
• Physical Premises Security
• Personnel Security and Awareness Training
• Operations Management
• Business Continuity and Disaster Recovery Readiness
• Regulatory Compliance
• Incident Response Readiness
• Areas of Unique Concern