Liebig and Associates LLC

Enterprise Information Security Management Consulting

Home Page
EVM
Company Profile
SMM
Bio and Contact
Blog Link
Security requirements come from across the business based on perceived risk and value of information critical to the overall success of an organization.  Distributing the ownership for the creation and maintenance of security criteria becomes critical to an organization as the complexity of the programs are built. 

At Liebig and Associates we understand the complexity of true information security programs span far beyond the technological safeguards in an organization.

The reach of a comprehensive security program needs to touch every aspect of your business and technology in an organized, repeatable and well documented manner. We recognize the bar was raised with the recent regulations as it is no longer good enough to state policies exist and are followed.  It is increasingly more important to supply evidence to back up claims.

This poses a logistical challenge to many organizations in being able to lay hands on documentation. It also proves to be a challenge in that information overload and manageability can stifle a company’s ability to make proper use of the data being gathered. 

Our approach puts the data owners at the helm in driving the maintenance of documentation for the controls that effect the security of their information.

FAQ answered by our Security Maturity Analysis:

How well do we do security?

Are we doing enough?

Are we doing too much?

How do we compare in our industry?

Are we as effective as we expect?

Are there other things we should do?

How much should be budgeted?

How long will it take?

What projects will we need to focus on?

What priority should we approach our projects?

What are the interrelationships between efforts?

What is our success criteria?

What are the risks for failure to act?

What will be our posture after mitigation efforts?

Measurement of a security program can be a frustrating endeavor. How well do we "do" security? Liebig and Associates LLC provides solid answers to this and other questions through our "Security Maturity Modeling" (SMM). We rank program features, processes and policies on a sliding scale simmilar to the capabilities maturity model (CMM).

Enterprise Vulnerability Management Strategy
Secure Software Design Program Management
Business Resiliency Planning
Secure Operations Center Management
Incident Response Management
Architecture Design Consulting
Policy and best practice review
Sarbanes Oxley 404 review of technology
Compliance policy Management
Security Training Programs
User Awareness Programs
Vendor and Product Selection

Check our BLOG for updates on current security products and topics
http://ciso2day.liebigandassociates.com

contact us at:

e-mail supplied as a graphic to fight Spammers
Copyright 2005 Liebig and Associates LLC. All rights reserved.