Compliance with Industry and Government Regulations

We help government agencies and businesses safeguard information and comply with regulations. Network scans and penetration tests keep administrators and executives aware of threats to their systems.

Aspect Solutions has solutions that can help both government and commercial organizations comply with the following laws and regulations:

Today, both government and industry must comply with regulations designed to safeguard the confidentiality, integrity, and availability of electronic data from security breaches. Securing data is more than just good practice. For many industries, it's the law.

Government –
The Federal Information Security Management Act of 2002 (FISMA) requires federal agencies to provide information security for their information technology assets.

SCAP – The Security Content Automation Protocol (SCAP) specification as an Unauthenticated Vulnerability Scanner and Authenticated Vulnerability and Patch Scanner.

SANS 20 Critical Controls for Effective Cyber Defense: Consensus Audit Guidelines (CAG)
The Children's On-line Privacy Protection Act (COPPA): requires companies who collect data from children to implement safeguards.

Public Companies –
The Sarbanes-Oxley Act (SOX) of 2002 requires companies to implement controls to safeguard financial data.

Healthcare –
The Health Insurance Portability and Accountability Act of 1996 (HIPAA) regulates the security and privacy of patient records and other health information.

Financial Institutions –
The Gramm Leach Bliley Act (GLBA) requires IT controls to keep customer financial information private and confidential.