CIMA's Information Security Professional Services offers end-to-end program support, beginning with laying the foundation for and development of your organizational-wide information security management system (ISMS - more commonly referred to as "program"). For purposes of illustration, immediately below this text, we have included a representation of the typical infusion points we help customers in the design, development, roll-out and maintenance of information security programs.

Information Security Professional Services Highlights

Gap Assessments
ISO 27001 - NIST CSF - HIPAA / HITECT - GLBA / FFIEC - NERC / CIP
Assessing security program elements for compliance with key standards and regulations is a foundational activity for strategic minded organizations. Our gap assessments not only provides a qualified understanding of what is and is not in place against defined requirements, but also assesses the controls that are in place against our (or your custom) capability maturity model.

On occasion clients find themselves in need of temporary assistance of a seasoned CISO / DPO to help:
a. build their initial information data privacy & security program;
b. fill a void for an interim period until a replacement can be found;
c. serve as a resource to represent the client in customer meetings;
d. other reasons
CIMA has been helped clients for term roles for periods of six (6) to twenty four (24), including helping to identify suitable full-time candidates, interviewing, and controlled transitioning into their new role.