Varex Solutions specializes in delivering information security services that are aligned with business objectives, integrated with
business processes, pragmatic, and cost effective.

We offer unbiased and vendor-neutral guidance based on defined requirements.

We strive to foster and support a risk-oriented approach, emphasizing continuous process improvement.

 

  • Serve as on-demand chief information security officer and information protection committee chair
  • Manage the development, implementation, and ongoing maintenance of information security program
  • Oversee personnel (in-house and third-party) with information security roles and responsibilities
  • Assist management team and staff with integration and interpretation of information security program controls
  • Serve as information security liaison to auditors, assessors, and examiners (client security reviews, penetration testing, FFIEC, GLBA, HIPAA, ISO 27001, PCI DSS, SAS 70, Shared Assessments Program AUP, SOX)
  • Perform security awareness training
  • Provide application developers with technical training and guidance on how to develop and test applications securely
  • Provide system administrators with technical training and guidance on how to build and maintain IT infrastructure securely
  • Review audit and assessment reports, assisting with prioritizing issues and tracking resolution
  • Maintain relationships with law enforcement and other related government agencies
  • Oversee investigation of security breaches and incidents, assisting with associated disciplinary and legal actions