Litmus InfoSec Security Policy evaluation verifies policy design and implementation compliance for critical business tasks such as risk analysis, awareness training, audit trail, disaster recovery plans and information access control and encryption. Policy evaluation focuses on, but not limited to, three broad areas:

Administrative Safeguards : Ensure that documented policies and procedures are developed and effectively implemented for day-to-day operations; managing the conduct of employees with electronic information and managing the selection, development, and use of security controls.

Physical Safeguards : Evaluate the policy’s coverage of security measures meant to protect an organization's electronic information systems, as well as related buildings and equipment, from natural hazards, environmental hazards, and unauthorized intrusion.

Technical Safeguards : Litmus InfoSec assists our client to develop effective measures that specify how to use technology to protect mission critical electronic information, particularly controlling access to it.