Education and Not-for-Profit

Education and not-for-profit entities are characterized by the need for accountability from both private and public stakeholders. Balancing the need for a free flow of information with security controls is especially difficult when IT infrastructure is decentralized, users have diverse needs, and sensitive information and intellectual property must be firmly protected. This industry sector accumulates tremendous amounts of data. Much of that data, including payment card numbers, healthcare information, social security numbers, and other personally identifiable information, is highly confidential.

The Security and Compliance Landscape

Education and not-for-profit organizations must also comply with government and industry standards such as FERPA, HIPAA, and PCI, and protect sensitive constituent data. These legal and regulatory requirements result in complex risks that are increasingly more pronounced as institutions lead-out with technology enablers such as mobile connectivity, online procurement, and payment gateways. The threat landscape has rapidly changed with hacker's activity targeting sensitive information that is often sold to the highest bidder. Potential losses as a result of a breach are significant. In addition to regulatory fines, lawsuits, and notification costs one of most valuable assets, the organization's reputation, may also be severely affected.

This sector is no stranger to regulations but today's challenges have heightened the importance of effective IT security to continue to provide much needed services. Entities of all sizes need not only tough security but also the ability to validate compliance to a broad audience of stakeholders. Our experience with education and not-for-profit entities enables TrustNet to create customized security and compliance solutions to meet the needs of your institution. TrustNet has industry experts with deep understanding of the unique challenges of education and not-for-profit entities. This experience enables TrustNet to help organizations in this sector to mitigate these risks and provide the most effective and efficient security and compliance solutions.

How TrustNet Helps Education and Not-For-Profit Entities

Security-as-a-Service

The iTrust security management platform protects computer networks from unauthorized use and malicious attacks from both internal and external sources. iTrust continuously and proactively monitors all network access points enabling IT management to rapidly identify security ssues and eliminate network vulnerabilities before they can be exploited. The system provides transparent, unobtrusive, continuous, surveillance, interception, and response to security threats. The cloud and appliance based security-as-a-service is designed for organizations with limited in-house security resources who face the same type of threats as large enterprises. The iTrust security management platform is delivered as an on-demand Web service and fulfills both security and compliance objectives significantly more cost-effectively than traditional enterprise software and hardware.

iTrust Security-as-a-Service

• Intrusion Detection - TrustShield
• Internal Vulnerability Management - iScan
• External Vulnerability Management - xScan
• Wireless Intrusion Detection - AirTrust
• Log Management - TrustAgent
• File Integrity Monitoring - TrustAgent
• Web Application Scanning - WebTrust

Compliance

• Payment Card Industry Data Security Standard (PCI DSS)
• SOC/SSAE16/SAS70
• HIPAA and HITECH
• Sarbanes-Oxley
• Incident Response

Security

• Incident Response Planning
• Penetration Testing
• Risk Assessments
• Policies and Procedures Development
• Security Assessments
• Wireless Security Assessments
• Security and Compliance Awareness Training SaaS
• Security Awareness Communication Program
• Security Awareness Posters