Security Consulting
Services from diverse industries are increasingly offered via public networks. Organizations, techniques and workflows need to be adapted to the new circumstances. In this respect risks have to be identified and essential catalogues of countermeasures and Escalation concepts have to be customized and implemented.
NOVOSEC analyses applications, systems and workflows considering the organizational, technical and legal frameworks, detects and evaluates risks and concisely devises appropriate countermeasures.
Security Audit
Independent of considering a single application or whole System areas, the risks need to be determined and appropriate technical, organizational or procedural measures have to be taken. This does not only affect new applications but also existing solutions, which need to be adapted to the new circumstances. The complexity increases if whole System areas are outsourced. The more companies, organizational and contractual Rules and Regulations involved, the more activities have to be augmented especially due to technical changes. Considering the policies and standards we define and check controls and then build up the corresponding Compliance and Approval management. Risks will be evaluated and traced in a so-
called Risk Register over the whole life time of the application.
Sarbanes-Oxley Act (SOx)
Sarbanes-Oxley Act (SOx) was enacted in order to protect investors in the Capital market. It demands comprehensive evidence of the efficiency of internal controls from all enterprises listed on U.S. Stock exchanges. Both for IT areas as for financial departments existing Control systems need to be enhanced to be SOx compliant and maintained for SOx-compliance. NOVOSEC supports you by establishing an efficient Compliance process, define corresponding SOx controls and derive together with you which measures have to be implemented.