Perform security audits and decide how to protect systems from external and internal threats.

CNN: Global panel issues Internet security recommendations

Do they perform regular third-party security audits?

FORBES: Is Your Data Safe In The Cloud?

To really make a ground-breaking shift in mobile app security someone should open an app store that requires apps to run through a suite of security checks including code audits, fuzz testing and vulnerability assessments.

FORBES: Can Nokia's Lumia Steal RIM's Security Thunder?

Donuts plans to augment that with a 14-point security system including periodic audits, taking down websites when merited, and a central listing of protected names so Donuts can prevent them from being registered on any of the generic domains it controls, Mason said.

FORBES: Cybersquatters Get Rich New Territories With Generic Domains

Compare policies to various compliance regimes such as PCI DSS (Payment Card Industry Data Security Standard) and generate reports for audits.

FORBES: Reduce Policy Complications to Enhance Security