PureThink

PureThink provides information security consulting solutions ranging from FISMA Compliance, DNSSEC, Security Configuration Management, Security Audits, Policy Management and more. We offer the technical expertise and management perspective with smaller-corporation flexibility to respond and solve problems efficiently.

Our mission is to protect client's information systems, develop solutions and methodologies to manage cyber-security incidents, reporting and improve security policies and procedures.

Our Experienced consultants hold CISSP, CAP, CISA and other major industry certifications. We are affiliated with leading organizations and offer optimal solutions for federal and local governments, financial institutions and health care providers.

Security Configuration Managements

PureThink provides the ability to rapidly detect configuration drift and deviations from policy across Microsoft Windows, Unix, Linux, IBM iSeries and critical applications - to help you protect sensitive data, maintain compliance, and build a more simple, secure, and manageable IT infrastructure.

Compliance assessment, reporting, and remediation strategy. Our security and compliance management solutions enable you to provide more mature security processes that eliminate unnecessary work, streamline compliance, and reduce risk.

Security Configuration Management Service Capabilities: * Assessment of security configurations against compliance mandates * Reporting on systems out of configuration, and management of exceptions to compliance policies. * Identify and report on user entitlements to systems - an essential part of managing access.

FISMA

The Federal Information Security Management Act (FISMA) of 2002 requires federal agencies to improve the security of their IT systems, applications, and databases. In compliance with industry best practices including those from the National Institute of Standards and Technology (NIST) for risk management, security control assessments, continuous monitoring and incident reporting, FISMA sets to improve the confidentiality, integrity, and availability of federal information assets.

* Performing Enterprise Risk Assessments * Evaluating existing security program and determining gaps with FISMA compliance * Developing appropriate enterprise security policies and procedures and FISMA reports * Providing custom-built cloud-based enterprise tools for FISMA compliance and reporting * Developing processes for C&A compliance in accordance with NIST SP 800-37 * Reporting on continuous monitoring activities and providing POA&M management * Reporting on status of FISMA requirements including risk assessments, POA&M status and security control assessments

Cybersecurity

Security Configuration Managements

FISMA