GLI will assess your IT operational processes against best practice standards such as ISO 20000 Technology Service Management to drive improvement and cost reduction.
Governance, Risk, & Compliance Practice
The GLI Governance, Risk, & Compliance (GRC) business delivers a comprehensive suite of solutions designed to empower audit, risk and compliance professionals, business leaders, and the boards they serve to reliably achieve business objectives, address uncertainty, and act with integrity.
We bring together market-leading solutions for the delivery of quality management solutions, global regulatory intelligence, IT process improvement, enhanced due diligence, compliance management, internal audit, and risk management services.
GLI offers the following governance, risk, & compliance practice services:
IT Security Audit and Consulting
GLI provides IT security audit services and compares audits of your information security processes against recognized leading standards for best practice to meet security requirements. GLI also provides IT security consulting services, which are designed to assist an organization in developing a new or enhancing an existing information security program/framework to align with a recognized IT security standard. A well-designed and functional IT security program aligned with your company’s business objectives can help drive an effective and efficient organization while protecting the confidentiality, integrity and availability of assets and information.
Internal Audit & Enterprise Risk Assessment
GLI provides experienced internal auditors to supplement existing Internal Audit Departments, providing ERM and Internal Control reviews.
Payment Card Industry PCI:DSS
GLI can assist with reporting requirements for the completion of a Self-Assessment Questionnaire or an onsite audit performed against the PCI Standard by a Qualified Security Assessor (QSA).
Source Code Security Audit
GLI performs security analysis of the source code using automated tools to identify vulnerabilities and security weaknesses. We perform automated scanning of application source code using commercial static secure analysis tools, combined with manual analysis is completed to identify data entry points, perform data flow analysis, trace user-controllable data from entry points, and search the code base for known gaps and software vulnerabilities.
GLI’s ISO Audit and Consulting services are a hands-on experience for your organization. Our expertise is to effectively coach your organization and to correctly interpret the ISO standard for your particular application. We work hand-in-hand with a wide variety of clients, including lottery & gaming, manufacturing, healthcare, and legal verticals. These organizations have ranged in size from very small to very large with one site or multiple locations. We work with only the most reputable global registrars to ensure your certification has the proper national and international recognition for your industry. We also ensure your registrar “partner” is well suited to work with you to continually improve your quality management system and organizational effectiveness. Savvy business leaders have employed our outside expertise to their company’s advantage. GLI’s practice is a full service, hands-on quality consulting firm specializing in the establishment, implementation and improvement of ISO management systems, certification auditing and training. Our work provides the necessary information and useful insight to help you become a more profitable company through implementation of effective quality management principles that drive organizational health and effectiveness.
ISO 27001:2013 Information Security Management Systems Certification
Whether you wish to pursue ISO 27001 certification, to perform a compliance audit or simply better implement the best practices set forth in these standards, GLI consultants will provide you with the guidance you need. GLI has ISO 27001 Lead Auditors accredited to provide ISO27001:2013 certification audits.