Compliance & Governance
Integralis experts help you develop actionable strategies that enable sustainable compliance and reduce business risk. We work with you to employ appropriate technologies and build mechanisms that ensure your IT infrastructure is designed, deployed, and maintained in accordance with regulatory mandates and your business objectives.
The Integralis GRC practice helps you address these critical compliance components and more:
- Information Risk Management Lifecycle
- Strategies and tactics to address compliance mandates, from HIPAA to PCI, Sarbanes-Oxley (SOX) to GLBA
- Asset management: people, information, processes, technologies, and intellectual property
- User security review
- Security monitoring and audit
- Security controls and metrics
- Identity and access management
- Reporting including log management and event correlation
- Policies and procedures
- Vulnerability and change management
- Incident handling and response
- Information Lifecycle Management (ILM) and rights management (IRM)
- Encryption at-rest and in-motion
- Standards awareness
- Compliance testing
- Reporting
- Compliance management including measurement and management tools