Advisory Services

RedLegg operation staff has over 20 years experience in providing Managed and Co-Managed Security Service. RedLegg helps make the most of your UTM, SIEM and Advanced Threat Investment by tuning, updating, monitoring and knowledge transfer. RedLegg Managed Security Services Team is based in the United States and treats your organization VIP allowing quick response to threats that may affect core business.

RedLegg’s Advisory services are built around strategic security and governance, including comprehensive assessments on operational and technical controls, as well as assessing gaps in industry-standard governance frameworks.  Advisory services are often paired with vulnerability scanning or penetration testing to assess the overall security posture of an organization.

RedLegg Advisory Service Offerings

Gap Assessments

The purpose of a GRC (Governance, Risk, & Compliance) Gap Assessment is to identify missing elements of a security program as compared to a specific framework.  Gap Assessments are typically conducted to compare the implemented administrative, physical, and technical controls of an organization with the standards depicted in an established framework. 

Gap Assessments are conducted for the benefit of the client, to allow them to establish a baseline or understand how they would score in an audit against a specific governance framework.  Upon completion, the client organization will have an understanding of what aspects of the assessed framework are implemented and operating effectively, and what aspects require additional work.

vCISO Custom-Tailored Strategic Security Program

Acting as your trusted advisor and partner , the RedLegg CTSS Program doesn’t simply sell you a service or product: we meet all of your security needs, allowing you to grow your business as you strive to reach the next level of information protection.

Included Services:

  • Current Security Posture Evaluation and Risk Assessment
  • Regulatory Compliance Assessment
  • Policy and Procedures Review & Development
  • Incident Response Plan Development and Execution
  • Security Awareness Program Implementation
  • Strategic Security Planning and Roadmap Development
  • Information Security Budgeting and Procurement Management
  • MSP Selection and Management

GDPR Full Services

The European General Data Protection Regulation (GDPR) is considered the most important change in data privacy regulation in 20 years.  It affects every organization in the world that processes the data of the European Union (EU) citizens and took effect May 25, 2018.  RedLegg offers the following GDPR related services:

  • Audit of the business processes to determine the type of personal data that is currently collected, stored, processed and exchanged with affected external entities
  • Review of the data minimization practices as a part of the data lifecycle
  • Evaluation of client ability to support Individual Rights defined by the GDPR
  • Discovery and analysis of GDPR-related data residing on-premises and in cloud-based applications and systems (File shares, SharePoint, Databases)
  • Data access/data protection controls and monitoring capabilities evaluation
  • Ongoing management, operationalization, and maintenance of the GDPR Compliance Program through continuous advice, recommendations, feedback and interaction with the client's Corporate Management