Do you want to be in business five years from now?

You must address cyber security today.

Besides the basic requirements of securing your data against thieves and ransomware, almost every organization must comply with one or more state, federal, or industry cyber security mandates:

  • If you have employees, or you receive personally identifiable information (PII) from clients, your business must comply with the data protection and privacy regulations of the jurisdictions in which those individuals reside. In the Commonwealth of Massachusetts, those regulations are defined in 201 CMR 17. In Rhode Island, they are found in RI GEN L §§ 11-49.3-1 – 11-49.3-6. All fifty states, the European Union (GDPR), and most other countries have privacy and cybersecurity regulations to protect their citizens.
  • If your business accepts credit or debit cards, you must comply with the Payment Card Industry Data Security Standard (PCI DSS). This generally comes in the form of a self-assessment from your bank or payment processor.
  • Suppliers in the US government supply chain must incorporate security frameworks such as National Institute of Standards Special Publication (NIST SP) 800-171: Protecting Controlled Unclassified Information in Nonfederal Systems and Organizations, or the Cybersecurity Maturity Model Certification (CMMC).
  • Medical data is governed by the Health Insurance Portability and Accountability Act (HIPAA).
  • Other industries have their own mandated security frameworks.

Clocktower offers two different consulting programs to assist you with security and compliance:

  • Our Compliance Champion service is designed to quickly get your organization into compliance with the specific controls and standards you need to meet and then to keep you there as your environment and requirements change. Our compliance consultants will work with your leadership team and IT support team to develop and track policies, procedures, and practices that satisfy all of your compliance requirements.
  • Our Security Star service is designed for organizations who don’t have specific compliance needs, but who want to address security in a formalized way. As part of our Security Star service, our security consultants take the best and most applicable controls and practices from the security world and work with your leadership team and IT support team to implement a policy-based approach to security.

Whether you need a Compliance Champion or a Security Star, Clocktower has got you covered, and we don’t need to be your IT support provider. While there are benefits to a tightly coordinated joint security and support team, we can work with any internal or external IT staff.

Your complete IT service provider and communications vendor serving southern New England.

Schedule a Call