410.290.1591 (Office).

(855) 710-3723 (Toll Free)

410.290.0875 (Helpdesk)

410.290.1908 (Fax)

7161 Columbia Gateway Drive, Suite C
Columbia, MD 21046

SCDIT
(410) 290-1591

Compliance and Cyber Security

  1. Are you operating a business and your customer is now requiring a level of compliance or security?
  2. Interested in bidding state or federal work with compliance or security requirements?
  3. Generally concerned about you company, personnel or client data?

If you are saying YES to any of these questions you need to give SCD a call at 410-290-1591

If you are saying NO or don’t care you may want to think about the following…

Who Needs Compliance

Every company should be looking at coming into compliance to ensure their private company data stays private.

Small Businesses

60% of all small businesses are targeted by hackers

39 Seconds

Cyber-attacks happen every 39 seconds

Jump from 2017

In 2018 hackers stole half a billion personal records. This was a 126% jump from 2017

Breached Records

95% of breached records came from only three industries in 2016, Government, retail, and technology

Human Error

95% of cybersecurity breaches are due to human error

Billion Devices

By 2020 there will be roughly 200 billion connected devices
  • Government agencies and private sector clients are requiring it to do business with them
  • If you are audited and found non-compliant you could be removed from your contracts

200 billion connected devices min

What does it all mean?

Ginni Rometty, IBM’s chairman, president and CEO, said: “Cybercrime is the greatest threat to every company in the world.” And she was right. During the next five years, cybercrime might become the greatest threat to every person, place and thing in the world. With evolving technology comes evolving hackers, and we are behind in security. (sources to be named)

Did this change your mind about security?

If you curious or serious then where does one start?

Compliance and Cyber Security

  1. What does it mean?
    • A level of security implemented from best practices or requirements
  2. Do we need to have it?
    • All businesses should be protecting their employees and assets. Government contractors are required to have it to bid on and maintain their contracts.
  3. To what level do we need it?
    • Public sector is dictated by the customer private is for the business owner and their IT support to determine
  4. How do we get it?
    • Engage a company like SCD to help you navigate
  5. What will it cost?
    • It really depend where you are and where you need to get to

A little confusion is understandable.  Both the Compliance and Cyber Security terms can be a bit vague and have many meanings. There is a large variance of requirements whether you are following Microsoftt or NIST base level best practices or you need to comply with a federal agency requirement. A good rule of thumb is to start with best practices such as having a solid firewall, spam filter and antivirus professionally installed on your network. Whether you are a company working from a home office or a more established corporate environment these pieces are equally important. Maybe you simply don’t know where to start so here are a couple of broad stroke definitions that may lend to some clarity.

Where to start…

  1. Establish what level (insert link to subpage for levels) or security or compliance you wish/need to get to.
  2. Run a gap analysis against those controls to find out where you are at.
  3. Establish your network is at a stable baseline. This will be the building block foundation.
    1. Solid network infrastructure, firewall, passwords, protected data etc.
  4. Build the network up to the goal level.
  5. Audit and verify compliance.
  6. Maintain, monitor and repeat.

What are some of the basic compliance levels?

  1. https://docs.microsoft.com/en-us/cloud-app-security/best-practices
  2. https://digitalguardian.com/blog/what-nist-compliance
  3. https://www.solarwinds.com/federal-government/solution/disa-stig-compliance
  4. https://compliancy-group.com/what-is-hipaa-compliance/
  5. https://searchsecurity.techtarget.com/definition/PKI/
  6. https://a-lign.com/what-is-the-cybersecurity-maturity-model-certification-cmmc/

Why reach out to SCD?

With 23 years in business, SCDIT is a comprehensive “IT” company committed to providing a diversified array of products and services designed to meet the long-term needs of our customers. SCDIT takes a global view of each customer to build a complete system from the ground up while maintaining a single point of accountability. This enables us to supply a superior solution that is truly designed to work collectively, is genuinely integrated and reliable while still adaptable to a changing technical environment guaranteed to improve the performance of any organization.

SCD has strategically partnered with companies that specialize in the various pieces that are required to get you to the compliance and security levels that you are looking for. As you cannot use the same company to perform that gap analysis as the remediation, Team SCDIT has the answer. Through these partnerships we meet all the criteria to assist in the journey.

Services:

  • Gap analysis
  • Vulnerability and penetration testing
  • Remediation and network hardening
  • Documentation and process development
  • Data privacy
  • Tailored deep dive reconnaissance
  • Network management services

Whatever your situation, SCD can help. We can start slower with a sales consultation to help you figure out what you really need, or we can hit the ground running if you already have the requirements. SCD maintains a deep understanding of how to help you get to your compliance goal. With internal staff and strategic partnerships SCD has the right solution for you. From gap analysis to implementation and ongoing support, we bring it all. We might even be able to get you some tax credit for it. See if you qualify.

https://commerce.maryland.gov/fund/programs-for-businesses/buy-maryland-cybersecurity-tax-credit

Call us today to get your solution in motion.

Call

 

 

© 1996 - 2025 SCD Information Technology