How TBG Can Help

How we can help you achieve 201 CMR 17.00 compliance

To help you better understand the steps you need to take to be compliant, we offer several 201 CMR 17 assessment services where you’ll receive specific remediation recommendations so that you have an opportunity to fix them prior to the March 1, 2010 deadline.

Assessment

Assessment involves discovery of all the items that are considered relevant by MGL 93H 201 CMR 17.00 and documenting them in preparation for scoping and remediation execution. The Assessment may be executed partially off-site through telephone interviews and policy reviews, and partially on-site via physical inspections and verification of data collected during off-site reviews.

View a slideshow of our Assessment process by clicking here.

Readiness Analysis

After the site assessment, our team continues executing the complete Certification process including the development of a 201 CMR 17.00 deficiency report.  The application layer, encryption and inventory requirements of 201 CMR 17.00 can be particularly confusing for organizations and we can help you understand where you may fall short of compliance.

Remediation and Validation

Once the Analysis is complete we’ll help you build a roadmap toward compliance with 201 CMR 17.00 remediation recommendations that will unblock the compliance issues in each area.. Certain groups within your organization may require technical training while others may have interest in security assessments for mission-critical applications. These education and assessment services are available to you as additional value-added solutions.

Certification

Once you’ve been through the Readiness and Remediation process, you’re now ready for the all important certification.  TBG Security will provide a third party review letter and certificate that your business is compliant with the requirements of the enforcing regulatory body. This letter will state that the business is compliant with the law and that they have developed the appropriate procedures for maintaining compliance.

How You Benefit:

Know Your Compliance Profile: You’ll know before the deadline for compliance where your company stands and have a chance to avoid costly fines.

Demonstrate Your Controls: You’ll know that your security controls are implemented correctly, operating as intended and producing their desired outcome.

Avoid A Lawsuit: You will have confidence that your company will have put controls in place to avoid a breach of your customer’s information, avoiiding significant fines and devastating damage to your organizations reputation.

For more information on how TBG Security can help your organization reach PCI compliance, contact our .(JavaScript must be enabled to view this email address) or call us directly at 877.233.6651