Introducing Our Information Security Practice

Introducing Avalution's Information Security PracticeFor twelve years, Avalution has been laser focused on business continuity. We’ve become the leading provider of business continuity software and consulting in the US. We work with 13% of the Fortune 100, including the largest organizations in seven different industries.

We’ve become well known for delivering business continuity services that are connected to the strategy of the business, pragmatic, and reliably delivered.

Today, we are expanding into Information Security Management. 

Avalution is deeply focused on solving our clients’ biggest challenges, and, for many, that is information security. In fact, over the last year, it’s become the most likely reason to need to activate a business continuity plan!

We’re excited to be joined by Scott D. Smith who will help us launch this practice. Scott joins us from Cincinnati where he provided Information Security consulting services for Procter & Gamble. He has also spent years managing and directing the Information Security Practices of Schlumberger, Deloitte, and Grant Thornton.

Scott and our team will provide three key differentiators in this space:

Strategic First: We build security programs from the top down. We don’t start with a list of controls, we start with the organization’s goals and priorities. From there, we build a program that clarifies and manages the most important information security risks. Using this approach, Information Security will never be a ‘black hole’ for management oversight.

Simple and Actionable: The information security profession is a constantly evolving, highly complex space. However, our unique talent is taking the complex and simplifying it into actionable steps. Our discussions will result in real improvement to your security posture.

Reliable Execution: Working with us is easy because we actively manage the project and always keep you informed. Our project management process ensures no surprises. We’re so confident in our ability to execute that we guarantee it!

Specifically, our information security services include:

  • Program Assessment for ISO 27001, NIST 800-53 or Industry-specific compliance assessments such as HIPAA, PCI, FFIEC, FISMA, etc.
  • Security Program Setup (governance, metrics, gap analysis)
  • Information Security Risk Assessment
  • CISO Outsourcing
  • Controls Design
  • Cyber Incident Response Planning

If you’re looking for a fresh take on information security or simply want to learn more, please contact us today!


Rob Giffin
Avalution Consulting: Business Continuity Consulting

Leave a Reply