Compliance

PCI, HIPAA, GDPR, CCPA, and Other Compliance Services

Get Compliant with Information Security Laws and Regulations

Any organization that handles sensitive information — whether personal information, critical infrastructure systems, financial information, intellectual property or sensitive government information — is subject to laws and regulations for protecting that information.

The common requirement of HIPAA, Meaningful Use, Massachusetts CMR 17.00, FISMA, GDPR, CIP, PCI DSS or Gramm Leach Bliley is that each organization must select its controls based on a risk assessment and must oversee the effectiveness of those controls using risk management.

HALOCK assists organizations in understanding the laws and regulations that they must follow to protect information, and guides them through compliance via the risk assessment and risk management processes.

We provide compliance services for the following requirements:

HALOCK prepares our clients for risk management by developing their unique criteria for assessing risk and accepting risk. HALOCK  conducts a risk assessment for the client by considering how effective foreseeable threats would be in their environment, and estimating the likelihood and impacts of those threats. When risks evaluate as too high, HALOCK recommends safeguards that evaluate as “reasonable” in the client environment, given their mission, their objectives, and their obligations.

Do you know “reasonable” for your organization?

Get an overview in our Compliance Services Brochure.

Get Ready for PCI DSS v4.0

UPDATE The PCI SSC announced the final version of PCI DSS v4.0 won’t be published until 2021.</font color=”#0f0c0c”>

Enhance your security strategy to address your changing working environment and risk profile due to COVID-19. HALOCK is a trusted cyber security consulting firm and penetration testing company headquartered in Schaumburg, IL in the Chicago area servicing clients throughout the United States on reasonable security.

Halock Security Labs BBB Business Review