CIT Global consulting covers the whole spectrum of the PKI infrastructure; including authentication, privacy, integrity, and non-repudiation. This includes all levels of security requirements according to the organization needs.
CIT Global offers a three tiered set of consulting services, where CIT Global eSecurity practice conducts a gap analysis assignment, provides accordingly a comprehensive recommendation report of the impacted areas, and finally develops a high level implementation plan for the organization to ensure full security compliance.
Gap Analysis
In order to provide adequate security for each client business needs, detailed gap analysis of the whole environment should be conducted, taking the following into consideration:
Current and future infrastructure
Business needs; current and future requirements
Technology needs; current and future requirements
Business process impact
Legal requirements and standards
Synergy and consistency in overall recommendations
Threats in relation to allocated project budget
A deliverable of such phase is to produce a document describing the security framework adapted, with the exact areas that need to be changed, along with the security recommendations and justifications for each given recommendation.
One of the main gap analysis objectives is to also provide the bank with a strong feel for the required work amount that will be needed. Therefore, budget can be allocated upfront in addition to avoiding any unexpected surprises.
Specifications Development
Following the gap analysis, CIT will conduct a detailed analysis in order to produce the needed business and technical specifications.
Implementation Plan Development
A high-level implementation plan will be developed to effectively comply with the developed security specifications. CIT can help in managing the implementation on behalf of the client. It is expected that CIT will work in conjunction with multiple vendors of the client in some project phases, depending on the agreed upon scope and project phasing.
