Do you have an effective risk governance structure including executive management support?
Do you currently have a Network Security policy?
Do you currently have an Employee Separation policy?
Is there a policy for laptops and all other mobile devices to protect data including encryption?
Do you have a policy controlling mobile and removable computer media?
Do you have or are you planning on acquiring Cyber-Insurance?
Are specific regulatory or compliance concerns needed (e.g., SOX, ISO, HIPAA, GLBA)?
If compliance is required, is it currently being met?
Do you protect your networks against internal and external attacks with firewalls?
Do you filter out unauthorized or malicious content including malware and viruses?
Do you have a monitoring strategy that addresses reviewing alerts and logs?
Have you changed all default (factory set) passwords on all networking equipment including routers and personal computers?
Do you consistently remove or disable user accounts when an employee leaves the company?
Are users required to change their passwords frequently using a strong password formula?
Do you have an Incident Response or Disaster Recovery plan?
Have you had a third-party security audit including vulnerability and security scans?
If an independent audit was performed, was it more than 12 months ago?
How many employees are in your company? (required)
Your Name (required)
Your Email (required)