Commercial Cybersecurity
Our team of Cybersecurity SMEs have been assisting business, of all sizes, to understand and implement a comprehensive Cybersecurity Program. Commercial clients are having more and more Cybersecurity requirements mandated by laws, regulations, and/or contracts. LDM SMEs understand these new and emerging Cybersecurity requirements such as: ISO 27001 / ISO 27002, NIST Cybersecurity Framework, NYDFS, Gramm-Leach Bliley Act (GLBA), Payment Card Industry (PCI) Data Security Standard (DSS), HIPAA/HiTRUST, Cybersecurity Maturity Model Certification (CMMC), etc.
LDM Commercial Cybersecurity services include:
Chief Information Security Officer (CISO) Support
- Act as CISO for small business (i.e., Virtual CISO)
- Address internal and external audit requests
- Work with internal and external resources to ensure appropriate security controls are in place and operating effectively
- Develop Policies & Procedures
- Business Continuity Management (BCM) Support
- Incident Response Support
Readiness Assessment
- DoD Cybersecurity Maturity Model Certification (CMMC) Readiness (Level 1 – Level 3 assessment)
- ISO 27001 / ISO 27002 Readiness Assessment
- NIST Cybersecurity Framework
- NYDFS
- Gramm-Leach Bliley Act (GLBA)
- Payment Card Industry (PCI) Self-Assessment Support
- HIPAA / HiTRUST Readiness / Support
Incident Response Support
- Create Incident Response Plan (includes Policies & Procedures)
- Develop & Deliver Annual Incident Response Training
- Develop & Deliver Annual Incident Response Tabletop Exercise
- Develop & Deliver Lessons Learned / After Action Report
Information Security Policies & Procedures Support
- Developed based on Regulatory and/or Legal Requirements
- Develop & Deliver Policies & Procures that are Customized to the Customer and their needs and how they have implemented cybersecurity management, operational, and technical controls
Security Awareness Training
- Develop & Deliver Security Awareness Training (in-house or virtual)
- Customized to include Customer Specific Data / Information
- Annual & On-Boarding Services
- Specialized Security Awareness Training
Penetration Testing / Vulnerability Assessment Support
- Internal & External Penetration / Vulnerability Assessment Testing
- Application
- Infrastructure
Business Continuity Management (BCM) Support
- Conduct Business Impact Analysis (BIA)
- Develop Business Continuity Plans (BCPs)
- Develop & Deliver BCP Training
- Develop Disaster Recovery Plans (DRPs)
- Develop & Deliver DRP Training
- Develop & Deliver BCP Tabletop / Live Exercise
- Develop & Deliver DRP Tabletop / Live Exercise
- Develop Lessons Learned / After Action Reports
Security Operations Center (SOC) Support
- Manage ATTACK, CORE, DATA PROTECTION, ENDPOINT, EMAIL, IDENTITY, MOBILE
Why LDM Group?
LDM SMEs have more than 30 years of combined information security experience with many of those years including management oversight. LDM’s primary focus is on enabling Cybersecurity staff to do great things. Hiring and maintaining talented Cybersecurity expertise is typically the most expensive part of any Cybersecurity engagement. LDM empowers our Cybersecurity staff to go beyond client expectations and continue to be educated on evolving Cybersecurity threats. LDM has:
- Cybersecurity staff hold degrees and/or security-specific certifications such as: CISSP, CISM, CISA, CFCP, Security+, GIAC, CAP, eMASS, and RMF for DoD, etc.
- Extensive experience with Federal Standards (NIST, FIPS, OMB)
- Expertise in automation utilizing tools like CSAM, NSAT, and XACTA
- Past Performance in Cybersecurity with various Federal agencies
- Reputation for delivering on-time and beyond client expectations.
- We love what we do – Your success is our Reward