Security Assessment

["Jasek, Robert E." <robert.jasek () TRINCOLL EDU>]

Greetings,

I was wondering who has had a recent third party IT security risk
assessment performed and if you would be willing to share some
information.


1.Who was the company?

2. What was the scope? Did it cover; (Security Organization, Executive
Support, Policies and Procedures, Security Awareness Programs, Tools sets
(Defense in Depth), Enforcement)?

3. Did it also include a PCI assessment?

4. How long was the engagement?

5. Would you use the same company again?

6. Was the company responsive with any rebuttals?

I would be happy to take this offline if that is helpful.

Thank you,

Robert