public key infrastructure (pki) trust serviceshecker.org/mozilla/slalom-pki-fact-sheet.pdfyour pki...
TRANSCRIPT
Contact Information:
Scott Perry, CPA, CISASolutions Leader
206.617.8747
Slalom Consulting
821 2nd Ave, Suite 1900
Seattle, WA 98104
206.446.5600
SLALOM.COM
With world class third-party validation your PKI will be ready for global acceptance
Public Key Infrastructure (PKI) Trust Services
ChallengesWhat is the best way to govern a PKI and implement it cost effectively?
How can you stay on top of current and ever-evolving PKI standards?
Who are the competent auditors who understand and have experience with PKI?
How do you control costs and receive meaningful and constructive feedback?
Slalom ServicesEducate: maintain an auditable PKI with minimal scope, ensure certificate policy
(CP) and certificate practices statement (CPS) meet accepted standards Diagnose & Pre-Operational Audit: interview stakeholders and assess risk; best practice analysis and interoperability testing; pre-audit reportingRemediate: improve technical infrastructure and refine vendor procurement; define roles and establish PKI governance processesOperational Audit: assess operational components against CP and CPS; interview stakeholders; attest over a specified time period Optimize PKI Governance: tune applications and create work-stream wave efficiencies; refine process, implement toolset and deploy performance metrics
The Slalom Difference
•
•
•
•
Personalized: Our tailored approach is specific to the assertions you need attested, using standardized templates, processes and best practices
Unobtrusive: Our “wave driven” project plan deconstructs all audit activities, minimizing the time needed by your PKI stakeholders
Fair: We understand what information belongs in an audit report
Accepted: Our audit reports have been accepted by the Four Bridges Forum: Federal PKI Architecture, CertiPath, SAFE-BioPharma Association, & HEBCA
Consultative: Our focus is to help our clients maintain a trusted and auditable environment. We explain why we need information, how findings can be remediated and the process made more efficient and less costly
Proven
Effective
Trusted
Assurance