
Excellence in Risk Management
Eliminated the cost of non-compliance

Situation
A new CISO for a major Las Vegas gaming and entertainment organization uncovered numerous critical gaps upon sudden departure of predecessor.
Problem
Unsuccessful outsourcing implementation framework.
Continual and ongoing reductions and reorganizations in staff.
Monthly and quarterly payment of fines for Payment Card Industry (PCI), Sarbanes-Oxley (SOX) and the gaming industry Minimum Internal Controls Standard (MICS).
Action
-
InnoVest Group documented critical policies, standards and procedure documentation to meet a compliance roadmap based on an internal deadline.
-
InnoVest Group developed a functional organization, IT security service catalog, organizational framework and gap analysis of tasks, components and functions, leveraging the ITIL framework and industry best-practices.
Results
-
Closed critical gaps
-
Fully documented organizational charts, job descriptions, etc.
-
Implemented PCI, SOX and MICS compliant policies, standards and processes
-
InnoVest Group is working with this client on a longer-term strategic IT Security roadmap.