Early stage (in development) independent software vendor seeking initial, and possibly ongoing, security consultant.
Background: we are developing an application for the professional services industries (banking, law, management consulting) that will require the storage of client information to the cloud. This will NOT be financial information, account numbers, passwords, balances, or anything of that nature.
Would like to discuss with a security expert our preliminary architecture, and how we might construct and protect our application to put our customers at ease on security.
Things you must have a familiarity with:
- How US banks and/or law firms think about cloud applications (will need verifiable references)
- Identity and access management systems, including SaaS options such as authy, in-webo, duo security, trustE, hackersafe, etc.)
Bottom line, when we approach our customers in sales calls, we want to be in a position to completely neutralize any security concerns at the outset.