|
|
|
Reference Center
Press Room
Investors
Events & Promos
Training
|
|
|
|
|
|
 |
|
E-Commerce Security Practice
The E-commerce security practice area focuses on securing the collection, transmission, processing and storage of information we use to run business. This information includes all data, network links, Internet systems, financial transactions and exchange of business documents. E-Commerce security services are applied to existing application systems, payment systems, systems under development and when making significant changes to systems. The scope of E-Commerce security includes networks, infrastructure, web facing systems and back end applications.
Service Offerings
There are 5 service areas in the E-Commerce Security Practice:
 |
|
E-Commerce Management |
 |
| |
|
- Policy and procedure development and review
- Network management and performance
- Enterprise identity management
- Security ROI and metrics
- Incident and issue management
- Governance frameworks (COBiT, ISO 17799)
|
 |
|
Compliance |
|
| |
|
- Interac banking machine network security compliance
- VISA networks and merchants
- MasterCard networks and merchants
- Security requirements in contracts
- Information security reviews in support of Sarbanes Oxley
|
 |
|
Assessments |
|
| |
|
- Network and server vulnerability assessments
- Application audits and security
- Network security and performance
- Risk assessments
- Forensics
- Data center audits
- Voice systems including VOIP
- Citrix audits
|
 |
|
Systems Development |
|
| |
|
- Threat risk assessment (NIST, SP 800 and OCTAVE)
- Privacy impact assessment
- Privacy architecture
- Security architecture for the enterprise and applications
- Security framework
- Quality assurance and testing services
|
 |
|
Education and Training |
|
| |
|
- Payment compliance programs (Visa and MasterCard)
- Audit and security of E-Commerce
- Monitoring systems and transactions
- Information security management
| | |
|
|
|
|
|