Sage Data Security – Information Security Consulting, Testing, and Training Services in Portland, Maine

Partnership in data security training, assessment, and compliance

Protect your information assets, financial strength and reputation. By weaving best practices into the fabric of your institution, Sage makes security second nature.

CAVA^SM — Configuration & Vulnerability Assessment
Our standards-based assessment documents your current security posture, identifies of potential problems and details recommendations for improvement.
PST^SM — Perimeter Security Testing
Want to know just what hackers can access on your network? Our ethical hacking techniques discover your security vulnerabilities in a safe, controlled manner.
iSOS^SM — Information Security
Officer Services
Bolster your internal team with an outsourced Sage Security Officer.
Rely on our experts to help you
ensure compliance and implement best practices.
SRA^SM— Security Risk Analysis
A 360-degree review of the risks facing your company — including operational, legal, regulatory, financial, and reputation-based risks — and how to mitigate and overcome them.
Regulatory Compliance Programs
Industry regulations are constantly changing — rely on Sage to define your requirements and help you
fulfill them.
Policy & Procedure Development
We help your organization define appropriate security policies and procedures to safeguard your data and environment.
Business Continuity Design & Testing
Can your business withstand a massively disruptive event? Sage
helps ensure successful response, recovery, and business continuity in the event of a disaster.

Sage publications, whitepapers and training courses are designed to keep you abreast of the latest security trends and best practices.

Information Security Training Portal
The Information Security Training Portal is a hosted solution that combines security awareness training with policy education and affirmation services, plus automatic security reminders and a library where you can store useful documents.
Certified Information Systems Security Professional (CISSP)
Join the ranks of Maine-trained CISSPs.
Publications
Security Policies and Procedures: Principles and Practices
A hardcover book that offers a comprehensive introduction to security policy, regulation and best practices. Written by Sage President, Sari Stern Greene. Click to order.
Practical GLBA Security Compliance
Guidelines for cost-effective data protection.
Everyday Risk Management
Managing risk: the secret to success.
Vendor Management Workbook
Select and manage vendors—securely and successfully.
Free White Papers
Event Logs are Key to a Secure Network (.pdf)
This white paper outlines security concerns that can be caught by
event log monitoring, explains which information to monitor, and offers insight on event log management required by various industry regulations.
State by State Security Breach Laws (.pdf)
Thirty-nine states require organizations to disclose security breeches involving personal information. Learn how these laws impact you!
What is the Difference Between Audits and Assessment? (.pdf)
The jargon is often confusing.
Explore the differences and learn when to employ each of these
valuable processes.

nDiscovery
Each server, network device, and application in your IT infrastructure collects information via “event logs”
that help you secure your company. Sage’s nDiscovery Information
Security Management service uses
these event logs to quickly uncover
and identify suspicious and potentially dangerous network activity, including internal system misuse, unauthorized access, malicious applications, and security breaches. Sage’s proprietary
log analysis methodology provides independent, outsourced security information management from
highly trained experts.
nDiscovery Resources:

Download a data sheet (.pdf)
to learn more about Sage’s
nDiscovery service.
Read the press release (.pdf)
announcing the national roll-out
of Sage’s nDiscovery security information management service.
Read "Event Logs are Key to a
Secure Network," a white paper written by Sari Greene, President
of Sage Data Security, that outlines security concerns that can be caught by event log monitoring, explains which information to monitor, and offers insight on event log management required by various industry regulations.
Read an article about event log management for the financial
industry published in the Maine Community Banker (Third
Quarter, 2007).
Read “Logs Don’t Lie,” published in
the December issue of the ISSA Journal.