Information Security

We provide a full suite of information security services ranging from practical, unbiased advice to helping organizations address any security vulnerability

Information security threats range from inquisitive prowlers to technologically sophisticated hackers with insider information. We provide a full suite of information security services ranging from practical,unbiased advice to helping organizations address any security vulnerability.


Information Security Assessments

  • Internal & External Vulnerability
  • Penetration Testing
  • Web Application Security
  • Wireless Security
  • Social Engineering
  • Physical Security
  • Secure Code Analysis
  • IT Risk
  • PCI Compliance

Gap Analysis / Compliance Roadmap

  • Internal & External Penetration Testing
  • ASV & Internal Network Scans
  • Network Infrastructure, Design, Deployment & Hardening
  • Onsite Assessment / Report on Compliance (ROC)

Secure Architecture Design

  • Firewall Design and Deployment
  • Intrusion Detection / Prevention System Design and Deployment
  • High Availability Web Application Infrastructure Design and Deployment
  • Systems Hardening
  • Identity Management
  • Physical Security
  • Logging Solutions
  • Business Continuity & Disaster Recovery

Disaster Recovery Planning

  • Business Impact Assessment
  • Business Continuity Plan Development
  • Business Continuity Plan Implementation & Testing
  • Information Security & Network Services Professionals

Our security professionals have a unique mix of business, risk and technology skills to provide you with advice that fits your specific situation. ALL of eGRC.COM's Information Security and Network Services professionals are Certified Information Systems Security Professionals (CISSP). Other certifications held by members of the team include:

Industry Certifications

  • Certified Information Security Manager (CISM)
  • Certified Information Systems Auditor (CISA)
  • Certified Secure Software Lifecycle Professional (CSSLP)
  • Payment Card Industry Qualified Security Assessor (PCI-QSA)
  • Certified Information Privacy Professional (CIPP)
  • Certified in the Governance of Enterprise IT (CGEIT)
  • Certified Information Systems Security Professional (CISSP)
  • Information Systems SecurityManagement Professional (ISSMP)
  • Information Systems Security Architecture Professional (ISSAP)
  • Six Sigma Green Belt – (SSGB)
  • Archer Certified Consultant (ACC)

Professional Affiliations

  • Information Systems Audit and Control Association (ISACA)
  • ISC2
  • Computer Security Institute (CSI)
  • World Future Society
  • International Association of Privacy Professionals (IAPP)

Our consultants have delivered numerous engagements to organizations across a broad spectrum of industries in the public, private, government and not-for-profit sectors.