Risk Management

➣ Our Security Control Assessment (SCA) services are designed to help organization meet their FISMA authorization needs. We provide guidance in the selection of controls based on the security impact level (FIPS 199). Our process includes selecting security control baseline, developing Security Plan (SP), evaluating effectiveness of security control implementation, and developing security assessment report (SAR) and POA&M generation. Our core competencies include: FIPS 199, FIPS 200, NIST 800-37, NIST 800-53, NIST 800-53A, NIST 800-30, NIST 800-171 and NIST 800-171A

➣ Our team have performed Sarbanes-Oxley audit and General Controls testing since the Sarbanes-Oxley (SOX) Law was enacted in Congress. Our risk-based approach to testing IT audits and controls has been proven effective with some of the largest companies in the world.

➣ ISO 27001 – An ISO 27001 certification demonstrates your Information Security Management System (ISMS) is mature and provide an advantage over other competitors lacking certification. ZION CyberSecurity Consulting provides help with internal and external audit needs. We also service as consultants to help organization prepare for and/or remediate findings.