Data breaches continue to make headlines, compromising the security of confidential data and impairing business operations. Taking measures to reduce your cyber risk and comply with evolving regulatory and industry requirements is critical. DHG can help every step of the way.

Failure to secure systems or enhance organizational processes to protect data may lead to regulatory scrutiny, negative impact to earnings and damaged brand and reputation. We believe the implementation of a holistic cybersecurity risk management program can help limit the likelihood and impact of cybersecurity incidents.

Delivering cybersecurity and data privacy services that complement and strengthen your business

At DHG, we understand that cybersecurity is fundamental to your business. We consult with our clients to assess processes and technologies to help prevent, detect and remediate cybersecurity risk.

KNOWLEDGE SHARE

Publication
CMMC In Focus: Five Takeaways From DOD’s Interim Rule On CMMC
CMMC In Focus: Five Takeaways From DOD’s Interim Rule On CMMC

On Sept. 29, 2020, the Department of Defense (DoD) released an interim rule providing more information on the planned rollout of the Cybersecurity Maturity Model Certification (CMMC). The rule also introduced an immediate requirement for NIST 800-171 assessment and scoring, with submission requi...

Publication
CMMC Accreditation Body Announces Plans for Assessor Certification
CMMC Accreditation Body Announces Plans for Assessor Certification

On May 21, the CMMC Accreditation Body (CMMC AB) posted a video update to its website providing clarification about the CMMC assessor program and training for CMMC Third Party Assessor Organizations (C3PAOs). Ben Tchoubineh, the chair of the AB’s Training Committee, detailed a two-phase approach ...

Publication
Department of Defense Contractors to Begin Preparing for New Cybersecurity Certification Requirement

SERVICES

  • Cyber risk management
    • Cloud Security Alliance
    • Cybersecurity risk assessment
    • Merger and acquisition (M&A) due diligence
    • National Institute of Standards and Technology (NIST) Special Publication (SP) 800-53
    • NIST SP 800-171
    • Policy and procedure assistance
    • Third-party assessment
    • Virtual Chief Information Security Officer (CISO)
  • Technical assessment
    • Penetration testing and infrastructure vulnerability assessments
    • Web application security assessment
    • Cloud penetration testing
    • Red team testing
  • Social engineering assessment and testing
  • Dark web research
  • Information security and security awareness program training and assessment
  • Incident response planning
  • Breach response assistance

INDUSTRIES

DHG's IT Advisory Services span many industries. Our collaborative service line and industry approach allows us to serve clients in the following industries:

Navigating compliance challenges

We assist clients with developing strong security practices to comply with emerging regulations and frameworks:

  • California Consumer Privacy Act (CCPA)
  • Cloud Security Alliance (CSA)
  • Cybersecurity Maturity Model Certification (CMMC)
  • Defense Federal Acquisition Regulation Supplement (DFARS)
  • Federal Financial Institutions Examination Council (FFIEC)
  • General Data Protection Regulation (GDPR)
  • Gramm-Leach-Bliley Act (GLBA)
  • Healthcare Insurance Portability and Accountability Act (HIPAA) / Health Information Technology for Economic and Clinical Health (HITECH)
  • HITRUST
  • International Organization of Standardization – ISO 27001
  • Microsoft Supplier Security and Privacy Assurance (SSPA)
  • Payment Card Industry Data Security Standard (PCI DSS)
  • Sarbanes-Oxley Act (SOX)
  • System and Organization Controls (SOC) for Cybersecurity