Compliance and Certification
A Security Approach to Compliance
Dell SecureWorks' Compliance and Certification services contribute to your compliance with industry regulations and help you prepare for your next examination. With expertise in PCI, GLBA, HIPAA, our security professionals respond to audit trends as they emerge to prepare you for a favorable exam of your IT controls. We work with you to:
- Document the controls you have in place & identify those you need
- Ensure that your policies and procedures align with best practices
- Make your best practices more visible to examiners as evidence
The specific programs offered are:
- PCI Compliance
- GLBA Compliance
- HIPAA Compliance
- ISO 27001/17799 Compliance
In addition, Dell SecureWorks provides Credit Bureau certification.
The assessment objectives are to provide management with clear and concise answers to the following questions:
- Within the scope of the control areas being testing, how well are you protecting your information-based assets from internal and external threats?
- Are management, administrative, physical, and technical and policy based controls adequate?
- How do your controls compare to others in the industry?
- What is the quickest, most cost effective way to manage risk to an acceptable level?
- How to comply with specific guidelines and/or best practices for relevant regulations?
Methodology
Dell SecureWorks' Compliance and Certification services offer assessments specifically tailored to address regulatory issues for financial services, healthcare and utilities. Our security consultants work with you to gauge the current risks to your mission critical IT assets, and to assess the current state of your security posture as compared to best practices and regulatory guidance. A gap analysis based approach allows Dell SecureWorks and your company sufficient control visibility to set objectives and priorities for remediation efforts. It also allows you to document and represent current control activities to regulatory auditors and examiners in the best context possible, as a best practice.