Texas (USA), Canada (Toronto) & India (Business Network) : Suma Soft provides
IT Risk Management solutions for varied SMEs and MNCs in USA and India and
helps solve regulatory, risk and compliance problems, thus helping organizations to be more
efficient to increase their business operational productivity. We enable clients
to take a disciplined approach to manage operational risks through a process of assessments,
improvements, model evaluation and validation.
1. Enterprise-WideIT Audits Solution For USA and India:
This includes IT policies and procedures, review of security controls, IT general controls
and applications controls. During the audit we review logical access management, review of networking and security devices like Routers, Firewall, physical access, backup
and disaster recovery processes, change management, control over SDLC, computer operations, data center controls, application input-processing-output-interface controls.
2. Internal Audits For ISO 27001/PCI-DSS/SOX-404:
We provide assistance in ISO 27001/PCI-DSS/SOX-404 pre-certification reviews as well as advisory services to safeguard
credit/debit card holder data as per the Payment Card Industry Data Security Standards.
Alongside, we support clients in compliance to SOX act by carrying out management
testing of IT general controls required for SOX-404 certification.
3. IT Compliance Audits:
We conduct thorough review of organization’s adherence to regulatory guidelines. We carry
out varied IT audits to identify flaws of IT processes, applications, infrastructure components based on regulatory guidelines issued by Reserve Bank of India, Insurance
Regulatory Development Authority, SEBI, Stock Exchanges and Clearing Corporation of India.
4. Formulation of IT Governance Guidelines:
We assist organizations in the development of various governance guidelines including IT
policies and procedures, information security policies and guidelines, business continuity,
disaster recovery plan.
5. Web Application Security Testing Framework by Suma Soft:
Suma Soft identifies security issues in the applications using extensive web application
security testing framework. It helps organizations ensure that they are free from
vulnerabilities prescribed in OWASP top 10/WASC criteria.
6. Vulnerability Assessment Services for USA:
We conduct internal vulnerability assessments and external penetration testing on IT
infrastructure components including servers and network devices to identify potential
weaknesses in the IT infrastructure.
7. Application Audits:
We perform an independent application audit to review the extent of business objectives met
and applications are appropriate, valid, reliable, timely and securely input processing.
8. Third Party Security Assessments:
We work with our clients to formulate vendor IT Risk Assessment program in order to
review and identify weakest links at the vendor’s end.
Suma Soft assists organizations in the development of various governance guidelines
including IT policies and procedures, information security policies, maintaining
business continuity and disaster recovery plan. This strengthens businesses to develop
effective IT security strategies and practices in accordance with business requirements and objectives.
For more information - http://www.sumasoft.com/it-risk-and-security-management/it-risk-management-solutions-usa/
