Knowing where you stand against your peers is crucial to remaining competitive, meeting compliance legislation and defending "reasonable and customary" liability claims. Measuring your IT security is also good practice for supporting the Homeland Security Strategy, as well as Corporate Governance. The third stage of our Planning process is IT Security Benchmark.

What A Security Benchmark Is
A security benchmark is a means of measuring and recording what control areas should comprise an information security function and how well institutionalized is the security function. Their use is instrumental in establishing a standard of Due Care and tuning specific security functions to fall within current reasonable and accepted practices.

Essential Benefits Of Security Benchmarking
One benefit of an Information Security benchmark evaluation is its ability to provide peer-institutional comparison of an organization's security practices. This comparative view is particularly meaningful in sectors where Information Security professionals must align their security programs with externally-imposed privacy and security requirements.

A second benefit relates to planning. Benchmark findings provide both an aggregate view of an organization's security practices and, equally as useful, a detail specific areas needing improvement.

A third benefit is cultural. Completing a benchmarking survey involves a cross-section of personnel - both technical and non-technical - from multiple functional areas. For this reason, the process itself sparks increased awareness and appreciation of the importance of information security across functional units.

What Clients Feel Are The Most Important Feature Of This Solution
A security benchmark is a means of measuring and recording what control areas should comprise an information security function and how well institutionalized is the security function. Their use is instrumental in establishing a standard of Due Care and tuning specific security functions to fall within current reasonable and accepted practices.

Three Project Management Choices
Our Custom, Assisted and Self-Survey benchmarking programs give you all the flexibility you need to perform this valued measurement on a continual basis. This solution works by SecureDog distributing a customized, prepared survey instrument for completion, scoring the results, and analyzing the scores and providing recommendations. Projects involve three phases: Preparation, Administration, and Reporting.

Compliance Benchmarks
Industry compliance is an important component of meeting current and impending legislation. Once your survey data is collected, additional reports can be prepared to address specific industry criteria without having to recreate surveys. This saves compliance managers time and money.

• GLBA Compliance Benchmark
  We provide you with an assessment of your company's security strategy and practices, as compared against Gramm-Leach-Bliley Act (GLBA) regulations. Using our core survey as a basis, we highlight the questions that directly pertain to GLBA requirements.



• HIPAA Compliance Benchmark
  We assess your company's security strategy and practices as compared against the Health Information Portability and Accountability Act (HIPAA). Using our survey, we have mapped and identified questions that directly pertain to impending privacy and security legislation.



• ISO17799 Compliance Benchmark
  We provide you with an assessment of the controls that are attributable or referenced by the ISO17799 guideline for information security. All 10 groups are reviewed and mapped to work with your policies and procedures.