We make sure that we understand your requirements and then create the solution that is right for your needs. We use industry-accepted methods and standards for security, privacy, risk management, project management, solution design and infrastructure management.
Methods
- ISO 27001 ISMS & PDCA
- ISF Standard of Good Practice
- COBIT, COSO, CMM
- CSE/RCMP HTRA
- TBS and IPC (ON) PIAs
- ITIL
- SDLC, UML, OOAD/OOP
- PMBOK
Standards
- ISO 27002
- ISO 27799
- HL7 v3
- PCI DSS
- ITU X.805, ITU E.408
- ISO 15408 Common Criteria
- NIST SP 800 reports
- CIS benchmarks
We are aware of applicable laws, regulations & rules such as: PCI, SOX, Bill 198 & MI 52-109, CPA, PIPEDA, PIPA, FOIPP, PHIPA, HIA, FFIEC, Basel II, GLBA, FTC, CRTC, SB 1386 and similar, HIPAA, HIPA and 21 CFR Part 11. We are also part of communities such as: (ISC)2, ISACA, IAPP, CIS, and HTCIA.