Since 1994 Team Allita has been providing strategic IT security consulting services to enterprise customers throughout the US. Our areas of specialization include the development of IT security policies, performing detailed IT security audits and the development of disaster recovery plans for some of the most sophisticated IT environments in the US.

Information Security Policy Development

A solid IT security policy is an essential component of any organization's infosec environment. While automated security mechanisms can address and even prevent a great majority of the threats facing today's businesses, it is the role of the IT security policy to fill in the gaps and provide coverage for those threats that cannot be mitigated through automation. And, in the case of those which can be mitigated, the policy provides additional protection.

In addition to providing protection, the IT security policy is also required for an organization to be auditable (a proper Infosec audit should measure the organization against it's own Infosec policy).

Team Allita has been developing security policies and providing Infosec security audits for some of the most security-sensitive organizations in the US. The policies we develop tend to be written in such a way as to not become obsolete with typical advances in technology, and are tailored to meet the client's specific environment and needs.

Infosec audits tend to be annual or semiannual events that include the following:

• Evaluating the completeness of the Infosec policy
• Reviewing previous audit findings for resolution of issues
• Reviewing the current environment against the Infosec policy

The results of our audits become findings, along with a summary statement of compliance that characterizes compliance for upper management. Findings are saved for reference in subsequent audits.

Disaster Recovery Planning

Most modern organizations have become sufficiently dependent on information technology, and their IT infrastructure environment has become sufficiently complex, that it is no longer adequate to merely have the means of recovery from disaster (e.g. backup media), Today downtime can be very costly, and to provide the assurance that recovery takes place in a timely fashion it is critical that such organizations have defined a comprehensive disaster recovery plan.

Team Allita has performed disaster recovery planning for some of the most demanding organizations and industries in the US, including major international banks. Through these experiences we have come to understand every aspect of disaster recovery planning, and can apply that experience to developing comprehensive and practical DR plans for virtually any organization or industry.