We believe the links below are helpful and explanatory to the way e-Contego approaches information security. They provide additional information about industry standards and requirements. Many of them are descriptive of the way e-Contego helps our customers gain compliance and increased information security.

The CSO Job Description from ASIS

The typical job description of a CSO and the associated responsibilities according to ASIS. e-Contego’s CSO advisory service can be the right interim solution if your company is currently without a CSO or if the function is administered by a non-security resource.

The IT Governance Organization ISACA

A global organization for IT Governance, Control, Security and Security professionals. Home of CobiT-the IT management governance model.

CobiT is one of the industry standards we utilize for security controls in the application development area.

ITIL Framework

ITIL framework - ITIL (Ver. 1/2/3) is part of the toolkit we use for creating a Risk Management Framework following industry best practices. The Change Management discipline is the key player - if done incorrectly, you could have new vulnerabilities left in your system.

HISP - Holistic Information Security Practitioner

Holistic Information Security Practitioner

HISP is the only integration course available today, which teaches the integration of ISO/IEC 27002:2005 and the ISO/IEC 27001:2005 standard with CobiT, COSO, ITIL and Multiple Regulations, pertaining to Information Security & Privacy.

It includes UK Data Protection Act, EU Directive on Privacy, HIPAA Security, FFIEC, GLB Act, FISMA (NIST 800-53/FIPS 200), Sarbanes-Oxley Act (Security), FACT Act, PCI Data Security (Visa CISP), California SB-1386, Canadian Bill C-198, OSFI, PIPEDA, PIPA, PHIPA.

ISO / IEC Standards

ISO is another industry standard that implemented correctly can benefit any organization. e-Contego uses a holistic approach to help our customers meet security compliance. We take the best from the industry and find the common denominator for various regulatory requirements (HIPAA, SOX, GLBa, etc.) and we help you build ONE solution that satisfies them all.