Newberry: Cyber Security: Cyber Security Services: Secrity Program & Policy Development

Incident Response

Electronic Discovery

Regulatory Compliance
Assessment & Auditing

Security Architecture &
Engineering Consulting

Vulnerability Assessment

Penetration Testing

Security Program &
Policy Development

Certification & Accreditation

The Newberry Group recognizes that organizations have multiple layers of infrastructure and that vulnerabilities and risks can reside in any of those layers, especially when there has been a lack of proper due diligence. We can engage at all company levels, from internal IT teams to CEOs, to develop customized approaches that will fit the organization. This method allows you to garner a valuable assessment on how your vulnerabilities must be addressed, compliance issues effect your company, and if your disaster recovery plan protects your mission.

Newberry’s Security Program, Policy Assessment and Development Team provides organizational assessments on your security programs and policies to gain insight on vulnerabilities and other risks. The assessment is conducted within certification guidelines and with the latest regulatory requirements in mind at all times. The team of experts is then able to provide recommendations for your team to implement or we can manage and guide the process of establishing best practices in your organization to keep you within regulatory requirements. We will work with your organization to exploit existing frameworks, where applicable, and the recommended courses of action that are achievable, manageable, and successful in protecting your organization’s assets.

Our approach to Security Program and Policy Development includes the following process:

Conduct a Threat Analysis: We initially assess all compliance requirements with existing law, industry standards, and industry best practices. Then we will catalog the assets that require protection. We examine the architecture, policies, and procedures that are currently in place and perform penetration testing analysis to include administrative, technical, and physical security controls.
Develop Written Security Policies and Procedures: Our team can design and develop security policies and procedures from administrative, technical, and physical perspectives. The development of robust policies and procedures is crucial to the continued success of your organization’s operational environment and the organization’s immediate and accurate responses in the event of a security incident.
Recommend Technical and Physical Safeguards: Our team of experts can recommend technical and physical safeguards to keep your assets safe and we will assist you in implementing such plans.
Implementing a Security Awareness Program: Strong training and awareness programs are critical to mission success and our team of experts has a strong background in training development and delivery. We can provide training and awareness sessions for your organization or develop training for your staff to deliver themselves.