Enhancing Cybersecurity for Eleven Peppers Design, HFS Home Improvement, and Direct Mortgage Loans

Eleven_Pepeprs_Fullcolor-RGB
HFS Home Improvement Loans Logo
Direct Mortgage Loans Logo

Explore how Duffy Compliance Services fortified the cybersecurity posture of Eleven Peppers Design, HFS Home Improvement, and Direct Mortgage Loans through comprehensive case studies. Delve into the cybersecurity challenges faced by each organization, Duffy Compliance’s strategic solutions tailored to their specific needs, and the tangible outcomes achieved in safeguarding their digital assets. From threat mitigation to regulatory compliance, these case studies underscore Duffy Compliance’s proficiency in bolstering cybersecurity defenses and fostering resilience against evolving cyber threats.

Eleven_Pepeprs_Fullcolor-RGB

How Eleven Peppers Design Won Their Compliance Certification and Kept Valuable DOD Contracts

THE PROBLEM

When Eleven Peppers Studios, a digital media design agency, found themselves in need of assistance with the newly released CMMC cybersecurity compliance requirements, they turned to Duffy Compliance Services (DCS) for help. Maintaining their contracts with the Department of Defense (DOD) depended on meeting these rigorous standards. Failure to do so would also significantly reduce their chances of winning future work from the government.

THE SOLUTION

DCS provided a comprehensive path to compliance for the organization, starting witha thorough security gap analysis. They helped the agency craft a plan of action to address the identified gaps and develop security policies tailored to Eleven Peppers’ specific needs. Through Incident Response exercises, risk assessments, and expert guidance, DCS helped the organization close the security gaps in their information system. The entire process, from inception to having them CMMC ready, took six months.

THE RESULT

Eleven Peppers has continued to retain DCS to maintain their compliance and keep their systems secure. DCS’s ongoing support includes periodic policy reviews and vulnerability management programs. The Eleven Peppers’ leaders have become much more knowledgeable about their systems, allowing them to better control access and integrity. They also have the assurance that Duffy Compliance Services cybersecurity experts are with them, guiding them through any concerns that may arise.

“Working with Duffy Compliance Services has been a game-changer for our agency. Their expertise and guidance have given us the confidence to navigate the complex world of CMMC compliance and secure the future of our government projects.”

Kristen Parks

Owner and Chief Creative Officer, Eleven Peppers

HFS Home Improvement Loans Logo

How HFS Home Improvement Loans Saved a Prestigious Credit Union Partnership

THE PROBLEM

HFS Home Improvement Loans, a leading provider of home improvement financing, faced a network breach that threatened their partnership with a prestigious credit union. The breach compromised their clients’ non-public information (NPI) and left HFS scrambling for a solution.

The security breach led to attackers sending emails from a compromised account, including to the security director of a prestigious credit union, who threatened to sever ties with HFS as a result. Losing this credit union would have been devastating setback for HFS’s business. Their managed service provider (MSP) also lacked the expertise to handle the situation.

THE SOLUTION

The managed service provider reached out to Duffy Compliance Services (DCS) for help. DCS stepped in to conduct a forensic investigation, ultimately saving the partnership and helping HFS establish a robust security framework. DCS swiftly conducted a thorough forensic investigation, determined the root cause of the attack, and developed a remediation plan. “Duffy Compliance Services stepped in at a critical moment for our business,” said Larry Collins, CEO of HFS. “They provided the expertise and guidance we desperately needed.”

Working closely with HFS’s executive team, DCS also helped develop a security framework around the GLBA (Grimm Leach Bliley Act) to protect their clients’ NPI. The investigation and implementation of the remediation plan were completed in just five weeks, and the credit union partnership was saved.

THE RESULT

Today, HFS continues to work with Duffy Compliance Services for ongoing support, including a software development security framework and compliance with the new Federal Trade Commission (FTC) Safeguards Rule, part of the GLBA requirements to protect client NPI data. Periodic reviews of policies and contributions to MSP services for support in vulnerability and asset management are also provided.

“The responsiveness and expertise of Duffy Compliance Services have been invaluable to our company,” Collins said. “Their input on system changes and ability to adapt to new regulations have made them an indispensable partner.”

Larry Collins

CEO, HFS Home Improvement Loans

Direct Mortgage Loans Logo

How DML Recovered From Cyber Attack and Strengthened Their Cybersecurity Program

THE PROBLEM

When a cyber attacker compromised the email accounts of the financial company, Direct Mortgage Loans (DML), they used them to falsify information and obtain wire transfers from DML clients. The attack not only damaged DML’s reputation, but also exposed operational vulnerabilities in their cybersecurity measures.

Unfortunately, DML’s Managed Service Provider (MSP) lacked expertise to address the issue effectively. The company needed a solution fast. “Our priority was to secure our environment and protect it from future attacks,” said DML Chief Administrator Officer, Mary DiMascio.

Unsure how to handle the situation and at risk from potential litigation, the company turned to Duffy Compliance Services (DCS) for help.

THE SOLUTION

DCS began with a forensic investigation to determine how the attacker breached DML’s systems. While working with their cybersecurity insurance company, DCS conducted a survey to determine the best approach for preventing future attacks, which led DML to adopt their methodology for building a cybersecurity program.

Over four months, Duffy Compliance Services supported the development of a more effective cybersecurity program and plan of action for DML. They also conducted a vulnerability assessment and provided the MSP with remediation recommendations.

THE RESULT

Though DML continues to rely on their MSP for most security-related matters, Mary DiMascio of DML expressed her confidence in Duffy Compliance Services’ ability to provide help when needed: “Duffy Compliance Services has been instrumental in helping us recover from the cyber attack and strengthening our cybersecurity program. Their expertise gives us the assurance that we can reach out to them for assistance whenever necessary.”

“Duffy Compliance Services’ ongoing support and loyalty to cybersecurity efforts have also earned Ms. DiMascio’s appreciation: “We value Duffy Compliance Services’ dedication to our cybersecurity, even if their involvement is indirect through our provider. Their commitment to helping us secure our environment and protect it from future attacks is invaluable.”

Mary DiMascio

Chief Administrator Officer, Direct Mortgage Loans

Interested in learning more?

We help you navigate through regulatory compliance by removing the stress of the unknowns. We make sense of complex cybersecurity and compliance jargon and create best practices for you.