Martin header
Search
Client Support Have a rep Contact me
Home Solutions Markets News & Events Company Contact
Red Flag Compliance Manual
For legal assistance references for your Red Flag Compliance Manual, contact:
• Dean Uher
   phone: (605) 995-1531
   email: deanuher@martin-group.com
• Peter Rasmusson
   phone: (605)-995-6831
   email: peterrasmusson@martin-group.com


Red Flag Security Review Service
Our Red Flag Security Review service is designed to fit your specific needs as you implement the procedures to detect, prevent and mitigate identity theft on a company wide basis. Any questions, contact:
• Bryan Rearick
   phone: (605) 995-1541
   cell: (615) 306-2365
   email: bryanrearick@martin-group.com
With the recent extension of the financial industry’s Red Flag rules for detection of identity theft to telecommunications providers, network and customer data security have become as critical to the communications industry as the ability to provide voice, video and data services. The Red Flag rules require a program:
• to detect, prevent, and mitigate identity theft
• appropriate to size and complexity of the company
• appropriate to nature and scope of activities of the company
• defensible in hindsight with "20/20 vision"

The potential penalties (applied based on the 20/20 hindsight standard), legal costs and negative public relations add up quickly even for a single event. Evaluating your current network, policies, procedures and physical security on a regular basis is a prudent and cost effective step to enact the policies and procedures in your Red Flag Compliance Program


Service Description
Martin Group’s Red Flag Security Review is a three step process:
• Step One: Perform the review and report on the findings
• Step Two: Make changes to network, policies, and physical security
• Step Three: Create a written policy to be incorporated in your Red Flag Compliance Program

Step One: Security Review and Report
Step One of Martin Group’s Red Flag Security Review assists with identifying potential vulnerabilities in the company network. Martin Group will evaluate configurations and software revisions plus probe for known security vulnerabilities on the following devices:
• Routers
• Ethernet Switches
• Wireless Access Points
• Firewalls
• Servers
• Workstations
• Access Equipment
• Phone Switches
• Transport Equipment

In addition Martin Group will review company policies and procedures related to security. The policies and procedures review include, but are not limited to, the following:
• Network/equipment password policies
• Network user account moves/adds/changes policies and procedures
• Employee entrance/departure policies and procedures
• Workstation security policies

Finally, Martin Group will review the physical security of the company. This physical security review includes, but is not limited to, the following:
• Employee work areas
• Central offices/data centers

Once this step has been completed, Martin Group will provide a written report with details regarding potential vulnerabilities in the network equipment and recommended changes.


Step Two: Implementation of Changes
Martin Group can assist with implementation of changes. Martin Group’s assistance can include all, some or none of the changes addressing the potential vulnerabilities listed in the Report provided in Step One. This may include addressing the following:
• Making equipment configuration changes
• Implementing new equipment to address vulnerabilities


Step Three: Written Security Program
Martin Group will take the information gathered in Step One as well as the changes made in Step Two and create a written Security Program for inclusion in your Red Flag Compliance Program.


For more information, please contact Bryan Rearick at (605) 995-1541 (office); (615) 306-2365 (cell); or via email at bryanrearick@martin-group.com.






Design by Ideavations ©2005 Martin Group, Inc. All Rights Reserved.