Featured Projects2017-08-13T19:26:20+00:00
  • Audit Prep for Largest Grid Cyber Audit Ever

    ITEGRITI assisted a large utility client prepare for a CIPv5 Multi-Region (MRRE) audit by reviewing compliance evidence and preparing the SMEs for audit through training and guidance on complex issues.  For any identified issues, we provided recommendations and worked with the client to implement remediation actions where necessary. The client was fully prepared to address [...]

  • HIPAA & PCI Cyber Health Check

    ITEGRITI assisted a client concerned with HIPAA and PCI risks by reviewing baseline cybersecurity controls to assess the health of their cybersecurity program. The review included the set cybersecurity controls that can help mitigate 80% of cybersecurity vulnerabilities. Our report provided an overall maturity assessment with risk based recommendations on how to improve the program.

  • Ransomware & Persistent Threat Recovery

    ITEGRITI assisted a logistics company deal with the impact of a ransomware event and a unknown persistent threat actor. ITEGRITI worked with the company to employ effective deterrence and recovery strategies and discussed threat-hunting and forensic options with the client.

  • Removable Media and Transient Device Program

    ITEGRITI developed a program and set of controls for a client to address risks around the issues related to "Removable Media" (USB drives, Recordable CDs, SD Cards, etc.) and "Transient Devices" (vendor laptops used for analysis, etc.), areas of challenge for many companies, to ensure both compliance and effectiveness.

  • “Root Cause” Analysis of Systemic Cyber Issues

    ITEGRITI provided one client with deep analysis to determine the "root cause" of systemic and repeated cybersecurity issues that had undergone several attempts at process improvement without resolution. By reviewing details of these issues, interviewing SMEs, and drawing on decades of operational experience, several specific areas were identified and concrete action plans were developed to [...]

Featured Projects

Audit Prep for Largest Grid Cyber Audit Ever

ITEGRITI assisted a large utility client prepare for a CIPv5 Multi-Region (MRRE) audit by reviewing compliance evidence and preparing the SMEs for audit through training and guidance on complex issues.  For any identified issues, we [...]

CIPv5 CVAs (Cyber Vulnerability Assessment)

ITEGRITI has provided both Paper and Active Cyber Vulnerability Assessment services to multiple energy clients that are directly aligned with regulatory expectations related to CIPv5 CVAs.   ITEGRITI experts utilize an assessment methodology for our NERC [...]

HIPAA & PCI Cyber Health Check

ITEGRITI assisted a client concerned with HIPAA and PCI risks by reviewing baseline cybersecurity controls to assess the health of their cybersecurity program. The review included the set cybersecurity controls that can help mitigate 80% of [...]

Customized Solutions Developed for NERC Client

ITEGRITI built a custom database tool for a client that combined all the various NERC inputs and tools (i.e. Evidence Request Spreadsheet, RSAWs, Standards, etc.) and supplemented them with information developed and retained by the [...]

Ransomware & Persistent Threat Recovery

ITEGRITI assisted a logistics company deal with the impact of a ransomware event and a unknown persistent threat actor. ITEGRITI worked with the company to employ effective deterrence and recovery strategies and discussed threat-hunting and [...]

CIP Audit Package Development and QA

ITEGRITI helped bring an entire CIP audit package together for a large utility client to ensure that compliance narratives, evidence references, and supporting evidence all aligned, was appropriately cross-referenced, and addressed the requests from the [...]

Removable Media and Transient Device Program

ITEGRITI developed a program and set of controls for a client to address risks around the issues related to "Removable Media" (USB drives, Recordable CDs, SD Cards, etc.) and "Transient Devices" (vendor laptops used for [...]

Training to Improve Evidence & Processes

ITEGRITI improved the evidence of a cybersecurity department through training and real time, "live", advisory services via conference calls. As a result, cybersecurity process evidence that initially had a rejection rate for insufficient evidence by [...]

Cybersecurity Risk Evaluation

ITEGRITI performed a cybersecurity risk evaluation for a company seeking to provide assurance to its cybersecurity insurance provider. The assessment included reviewing network infrastructure and cybersecurity process controls and evaluating those processes against a baseline [...]

Cybersecurity Evaluation Process Creation

ITEGRITI developed a "check-list" process for a client to validate compliance with cybersecurity controls on critical infrastructure operational systems as part of system implementation. The process was designed to be repeatable and translatable to other [...]

Cybersecurity Controls Program Development

ITEGRITI reviewed the cybersecurity controls for a $1B organization and compared the controls in place to a set of baseline cybersecurity controls used to determine overall program efficacy. By performing this analysis, several areas of [...]

Clarity to Complex Cyber Compliance Issues

Not every area of IT compliance is clear cut. ITEGRITI helped one client define and clarify it's positions in areas where more ambiguity exists, working with the client to develop, document, and articulate its rationale [...]