Information Security

Information security is on the mind of every company. Studies show vulnerabilities exist externally as well as from within. Some known challenges include:

• Insufficient network/system design for compliance and auditing
• Attack or threat of attack
• Inability or uncertainty about compliance with Massachusetts 201CMR17
• Lack of security awareness or security measurements
• Rapid company growth beyond network design
• Difficulty keeping up with security patches

Network Vulnerability

Network vulnerability audit
This service consists of internal and external penetration testing to determine the vulnerability levels of your environment. The final deliverable is a report with prioritized recommendations.

Network security policy review
Many companies do not even have a basic security policy in place. Court Square will review an existing security policy or create one from scratch based on company strategy, regulatory requirements and industry best practices. This is extremely important for companies with employees or clients who are Massachusetts residents. Most must comply with Massachusetts security law 201CRM17 by March 1st, regardless of state of incorporation.

Network security design
Court Square will develop a secure network design with implementation recommendations. Our security and network consultants can implement or your team can use the design and recommendations to implement.

Network security design implementation
The implementation of a secure network design will include documentation, diagrams and knowledge transfer. The project plan will take into consideration critical business issues and timing to ensure implementation with minimal disruption to the business.

Disaster Recovery

Court Square provides testing and monitoring of disaster recovery systems for companies of all sizes. These services can be chosen as an extension of business continuity or as a stand-alone service.

Patch Management Services

Managing patches and security updates are critical to a safe environment. Court Square offers services ranging from a onetime check to a continuous patch management service.

Software Updates Version Control Audit which provides a report on your current version status versus the most recent version available with priorities noted for upgrades.

One time patch management update following a version control audit which updates your mission critical operating systems and applications with the correct versions.

Continuous patch management service avoids the risk of being out of date with ongoing audits and implementations of new versions to improve performance and address security concerns.

These services are predominately project based but ongoing security management can be extended to a managed service.
Emphasis is always on best practices as well as the ISO 17799/27001 standard, thereby driving compliance in regulated industries.


Second Nature

Living in the FDA compliant world is second nature to our staff as we support numerous applications housing regulatory content and patient safety data.

We understand the complexities involved with having to support and maintain systems with pre-clinical, clinical and post marketing data.

We have a Master Security Plan that meets the requirements of ISO 27001 and 27002 Frameworks as well as 21 CFR Part 11. Since we are a Massachusetts based company, we also have to comply with one of the most stringent of state standards, 201 CMR 17.00: STANDARDS FOR THE PROTECTION OF PERSONAL INFORMATION OF RESIDENTS OF THE COMMONWEALTH of MASSACHUSETTS.


With all of these provisions guiding the delivery of our 21 CFR Part 11 Qualified cloud and remote managed service capabilities, you can be assured that we will safeguard your data as carefully as any provider can.