Our PCI-C service is a one-stop solution for on-going compliance with PCI-DSS. Illumant determines the applicable PCI-DSS requirements for each client based on transaction volume, credit card handling processes, and partner relationships. We prepare the relevant self-assessment questionnaire (SAQ) and any applicable attestations of compliance (AOCs). We address approved scanning vendor (ASV) requirements, and conduct all internal vulnerability assessments, penetration testing, and quarterly wireless security assessments. Internal assessment are handled remotely via supplied appliance. The PCI-C helps protect cardholder data, and simplifies on-going compliance with all the requirements of PCI. We can also assist with updates to and initial development of security and PCI-related policies and procedures.
Illumant's HIPAA-C service is a straightforward solution for addressing the compliance and security risk analysis requirements of the HIPAA Security Rule and the HITECH Act, and for addressing a core objective of "Meaningful Use". Illumant leverages a refined model for conducting the required HIPAA security risk analysis, and assesses an organization’s safeguards to ascertain compliance with the HIPAA security rule. The assessment includes optional internal and external technical vulnerability analysis, technical and physical penetration testing, and social engineering. Illumant provides practical remediation advice for addressing gaps and shoring up compliance.
Our SOC-C services helps service providers obtain their SOC 2/SOC 3 reports (aka SAS 70, SSAE 16, AT 101, WebTrust, or SysTrust). Illumant identifies and helps remediate gaps between an organization’s existing controls, and required attestation standards and applicable trust principles. Illumant helps design and document controls, and tests controls to ensure a successful audit and attestation engagement.
The CIPv5-C is an assessment of compliance with the latest version of the Critical Infrastructure Protection (CIP) standard published by the North American Electric Reliability Corporation (NERC). Illumant identifies gaps between a client’s security measures and protocols and the requirements of CIPv5. Per request, Illumant will assist with compliance readiness by helping remediate the gaps identified above by documenting policies and procedures, and designing compliant security measures to meet CIP requirements.
Not seeing the specific standards or regulations you need? We have experience with many other regulations and standards. Click here to contact us for more information.