Our Managed Security Services are designed to maintain high levels of compliance, keeping in mind the mission-critical needs of customers ranging from federal and state agencies to international pharmaceutical companies and investment banks. We know how to handle and protect your sensitive information.
Cyber attackers are becoming faster and more adept at wreaking havoc with networks every day, leaving businesses and government agencies to struggle with fending off their sneaky and creative tactics. Nearly one million new malicious threats are generated each day.
Not every business or government agency has the in-house resources to address and manage compliance and security effectively. That’s why AISN offers strategically developed Managed Security Services, which can be customized to exceed your current security and compliance standards. Our proactive team continuously monitors and responds to security issues and offers remediation services to help you protect and defend your organization.
Managed Security Capabilities
- Vulnerability Scanning (External/ Internal)
- Penetration Testing
- Enterprise Threat Simulation
- Continuous Auditing
- Data Encryption
- DDoS Protection
- Event Management
- Firewall and VPN Services
- Intrusion Detection Services
- Malware Protection
- Patch Management
- Two-Factor Authentication
- Web Application Firewall
- Remediation Services
- Compliance Management
- Log Management
- SSL Certificates
AISN’s audit program ensures we stay abreast of the latest developments, including the recent changes to the Health Insurance Portability and Accountability Act (HIPAA) Security Rule. AISN offers HIPAA-compliant hosting because we take the security and safekeeping of our clients’ Protected Health Information (PHI) extremely seriously.
All of our hosting services are HIPAA-compliant and include the high security required to safeguard PHI. We strive to comply with HIPAA regulations by implementing and maintaining a multi‐faceted, stringent Risk Assessment Process that takes into account the threats against PHI. AISN’s Risk Assessment Program includes annual risk assessments, risk-based selection and implementation of controls, ongoing monitoring of controls, semi-annual testing and adjustment of controls and reporting to management for annual program updates.
AISN has successfully completed a Federal Information Security Management Act (FISMA) Moderate Compliance Audit. This verifies that AISN recognizes the importance of information security by following a tailored set of baseline security controls from NIST Special Publication 800‐53, and documents the physical, administrative, and technical safeguards AISN has implemented, the effectiveness of the AIS Network Risk Management Strategy, and how AISN’s controls achieve FISMA Moderate compliance.
The Payment Card Industry (PCI) Data Security Standard (DSS) consists of technical and operational requirements set forth by the PCI Security Standards Council to protect cardholder data. The standards apply to all organizations that store, process or transmit cardholder data. The AISN network infrastructure maintains PCI compliance and we provide PCI-compliant services for businesses and government agencies engaged in the transmission of PII through our network.
AISN maintains compliance with Self‐Assessment Questionnaire C, and as an additional measure, this compliance is verified in our FISMA audits. Ongoing compliance measures include SSL Certificate Encryption, quarterly network scans by an approved scan vendor, server security monitoring and an annual self‐assessment.
Operating within an SSAE 16-audited data center does not make a hosting company SSAE 16-compliant. Our company AND our data centers maintain this level of compliance. SSAE 16 auditing standards focus on the controls of a service organization that are relevant to an audit of a user entity’s financial statements.
Federal regulations such as Sarbanes‐Oxley, Gramm‐Leach‐Bliley and HIPAA require corporations to audit the internal controls of their suppliers, including those that provide technology services. AISN has implemented best practice controls demanded by our customers to address information security risks and has been continuously SSAE 16-audited by independent third party auditors since 2009.
As a result of these audits, an independent, third‐party auditor has issued an opinion that validates these controls and has performed tests that provide assurance regarding the managed solutions provided by AISN.