Sage Data Security – Information Security Consulting, Testing, and Training Services in Portland, Maine

Partnership in data security training, assessment, and compliance

Sage offers an award winning portfolio of advisory, assessment and assurance information security services designed to protect information assets and ensure regulatory compliance.

Download a data sheet (.pdf) for more
about our Information Security services.

CAVA^SM — Configuration & Vulnerability Assessment
Our standards-based assessment documents your current security posture, identifies potential problems and details recommendations for improvement.
Perimeter Security Testing
Want to know just what hackers can access on your network? Our ethical hacking techniques discover your security vulnerabilities in a safe, controlled manner.
iSAS^SM — Information Security
Advisory Services
Bolster your internal team with an outsourced Sage Security Advisory program. Rely on our experts to
help you ensure compliance and
implement best practices.
Information Security Risk Assessment
A 360-degree review of the risks facing your company — including operational, legal, regulatory, financial, and reputation-based risks — and how to mitigate and overcome them.
Firewall Configuration & Rule Set Review
We can troubleshoot your organization's firewall rule set to ensure correct configuration and minimize vulnerability.

PCI Compliance RoadMap
Processing credit or debit card payments? Make sure you are in full compliance with Payment Card Industry (PCI) standards, and protected against the threat of compromise and fraud.

Wireless Vulnerability Assessment
Sage can evaluate the strengths and weaknesses of your wireless network, track down misconfiguration and identify rogue activity.

Sage publications, whitepapers and training courses are designed to keep you abreast of the latest security trends and best practices.

Information Security Training Portal
The Information Security Training Portal is a hosted solution that combines security awareness training with policy education and affirmation services, plus automatic security reminders and a library where you can store useful documents.
Publications
Security Policies and Procedures: Principles and Practices
A hardcover book that offers a comprehensive introduction to security policy, regulation and best practices. Written by Sage President, Sari Stern Greene. Click to order.
Practical GLBA Security Compliance
Guidelines for cost-effective data protection.
Everyday Risk Management
Managing risk: the secret to success.
Vendor Management Workbook
Select and manage vendors — securely and successfully.
Free White Papers
Event Logs are Key to a Secure Network (.pdf)
This white paper outlines security concerns that can be caught by
event log monitoring, explains which information to monitor, and offers insight on event log management required by various industry regulations.
State by State Security Breach Laws (.pdf)
Forty-four states require organizations to disclose security breeches involving personal information. Learn how these laws impact you!
What is the Difference Between Audits and Assessment? (.pdf)
The jargon is often confusing.
Explore the differences and learn when to employ each of these
valuable processes.

Download a data sheet (.pdf) to learn more about Sage’s nDiscovery service.

Try the new interactive video,
which shows you why you
need nDiscovery, how it
works and more!
nDiscovery
Each server, network device, and application in your IT infrastructure collects and logs information that can be used to secure your company. Sage’s nDiscovery service mines the logs to uncover and identify suspicious and potentially dangerous network activity, including internal system misuse, unauthorized access, malicious applications, and security breaches. Sage’s proprietary log analysis methodology provides independent, outsourced security information management from
highly trained experts.
nDiscovery Resources:
Read "Event Logs are Key to a
Secure Network," a white paper written by Sari Greene, President
of Sage Data Security, that outlines security concerns that can be caught by event log monitoring, explains which information to monitor, and offers insight on event log management required by various industry regulations.
Read “Logs Don’t Lie,” published in
the December issue of the ISSA Journal.