Security and Compliance Governance
eBisLogic has helped Fortune 1000 companies comply with regulatory
directives, mitigate sensitive data risks and achieve vigilant data
governance. eBisLogic’s extensive real-world experience coupled with
active involvement in The American Bar Association's Information
Security Committee, The InfraGard National Ethics Committee and The
Information Systems Security Association (ISSA) uniquely position it to
help its clients efficiently integrate regulatory directives without
impacting the business.
eBisLogic Services include:
SOX, PCI, GLBA, and COPPA compliance and risk assessment, program
planning, mitigation, testing and re-assessment using established
framework standards such as COSO, CobiT, ITIL, and ISO-17799.
Development of customized enterprise standard security “posture” and
controls framework to enable secure and verifiable partner
Credible and independent forensic investigation and reporting on
information security violations, including relationship management
of government agencies.
Knowledge transfer that enables growing compliance personnel and
establishes enterprise-wide regulatory awareness.
Development of security policies, standards, guidelines, and
procedures along with dissemination of information security
awareness and training materials thru creative interactions like
town-hall meetings, team building exercises at the group level,
fun-filled games and security open house themes.
and implementation of integrated set of security monitoring tools
for enterprise systems, applications, global Network systems and
Extranet infrastructure including outsourced systems and co-located
facilities, like data center, partners, suppliers and managed
service providers thru SAS 70 attestation and change records.
Enterprise level PCI audits, gap analysis, Vulnerability Assessments
following the established standards by VISA.
practices in Change management, escalation and security incident
review thru a standing committee. Methodology in Application
Security Evaluation and Assessment Report framework for the
For more information or to
schedule a meeting to review our Information and Business Risk
Management COE charter and services, please send an email to