Security Diligence, LLC provides consulting and advisory services in Information Security, Privacy and Risk Management with key practice areas in Cybersecurity and Third Party Risk. Their extensive experience provides a practical approach to assessing risk, identifying areas for program improvement and developing strategies and implementation approaches that provide measured results.
Security Consulting Services:
Information Security - Security Diligence brings business-driven strategy to the development and implementation of Information Security Programs. With industry-recognized practices, they assess existing program effectiveness and develop strategies for today's complex information and cyber security landscape.
Privacy and Data Protection - Security Diligence can provide a number of key services for Privacy and Data Protection that include program governance, Privacy by Design guidance, impact analysis, due diligence compliance reviews and information protection strategy and assessment.
Enterprise Risk Management - Security Diligence can provide risk management services for key focus areas including security assessments and analysis, counterparty security due diligence, cyber security framework alignment, cloud readiness, and third party oversight strategies.
Third Party Vendor Risk - Security Diligence has extensive experience in third party vendor risk. As a key risk area today, they provide comprehensive services in program development and implementation. They can also provide third party due diligence security reviews and onsite assessment services.
Founder and CEO, Shawn H. Malone, is an award winning Information Security and Cyber RiskExpert. He has over 35 years of experience delivering Cybersecurity Solutions and Third-Party Risk Management Programs to the financial services, insurance, consulting / advisory, and defense industries.
Mr. Malone has degrees in Electrical Engineering Technology and Network Security. He co-developed industry leading Third Party Risk Management professional certification. He is a Certified Information Systems Security Professional (CISSP), Certified Third Party Risk Professional (CTPRP) and Certified Third-Party Risk Assessor (CTPRA). He has served as a keynote speaker and provides training services in his areas of expertise including Information Security, Cyber Risk, and Third Party Risk Assessment.