We’ve reviewed the requirements of every major Cybersecurity insurance carrier as well as the compliance mandates related to HIPAA, PCI, FIPS 140-2, GDPR and SOX.  In addition to an annual cybersecurity assessment to measure your company’s individual requirements, these are our minimum security standards:
  1. Next Generation Firewall (NGFW) with active security services
  2. Server and Workstation Event Log Monitoring
  3. Automated Patch Management for Windows
  4. Automated Patch Management for 3rd party patches
  5. Program for Proactive firmware updates for Switches, Firewalls and WAPs
  6. Monthly Cybersecurity training for all staff
  7. Weekly Simulated Phishing Emails
  8. Cloud Security Platform (SPAM Filtering, Account Takeover Detection, Cloud File Protection)
  9. Modern Endpoint Detection & Response (Replaces Traditional Antivirus)
  10. Threat Hunting and Compromise Assessment Platform
  11. Security Information and event management (SIEM)
  12. Monitoring by 24/7/365 Security Operations Center (SOC)

Minimum Cybersecurity Standards