Risk Assessments

Challenge

Threats to information assets are on the rise at the same time budgets are shrinking. And now there is the added challenge of complying with governmental regulations, such as the Gramm-Leach-Bliley Act (GLBA), Health Insurance Portability and Accountability Act (HIPAA) and Sarbanes-Oxley. Without compliance, organizations run the risk of incurring massive fines and legal action.

Solution

Digital Defense can help you achieve regulatory compliance with our Information Security Risk Assessment (ISRA) solutions.

Based on the widely accepted OCTAVE^® (Operationally Critical Threat, Asset, and Vulnerability Evaluation℠) methodology, our ISRA solution gives you a smart, strategic approach to applying your finite resources to managing risks over time. With the help of our OCTAVE-trained security analysts, you can:

• Identify all critical information assets.
• Generate threat profiles based on a variety of factors such as type of access, source of attack (internal or external), and the potential motive for an attack.
• Define potential risk exposure in non-technical, easily understood terms.
• Determine key actions - strategic and operational -- that need to be taken.
• Establish a formal plan to accept, defer, transfer or mitigate your defined risks.

Choose from a variety of ISRA solutions, including both onsite and self-paced options.

• Consulting -- Work with an OCTAVE-trained network security analyst over a three- or five-day period.
• Webinars -- Provides an affordable way to get the help of a security expert online.
• Compliance Management -- Allows you to manage risks over time and helps you establish and maintain your Information Security Policies.

Advantages

• A holistic, organization-wide view of your critical information assets and associated threat profiles.
• The ability to craft and implement a solid "road map" for addressing key issues.
• Prioritized tasks that meet the specific needs of your organization.
• Detailed recommendations and proof of your regulatory compliance.

Consulting

• A holistic, organization-wide view of your critical information assets and associated threat profiles.
• The ability to craft and implement a solid "road map" for addressing key issues.
• Prioritized tasks that meet the specific needs of your organization.
• Detailed recommendations and proof of your regulatory compliance.

A Digital Defense OCTAVE-trained network security analyst works on-site with your IT personnel to understand your risks and remediation needs. Choose from two options: the ISRA Turnkey solution for a three-day engagement or the ISRA Corporate solution for a five-day engagement. Both include:

• Stage 1 — Data Collection: Using easy-to-follow OCTAVE-based workbooks and documents, you conduct system identification and risk evaluation.
• Stage 2 — Analysis and Reporting: Analyzing information captured during the interactive sessions, your Digital Defense Consultant develops a formal report outlining key findings and next steps. The report also addresses your compliance requirements.

For more information on our ISRA Consulting solutions or to sign up for your own engagement, please contact a service representative today.

Webinars

Our ISRA Webinar solutions give you a self-paced option for working with an OCTAVE-trained network security analyst. These web conferencing solutions are highly affordable as multiple clients can share in the investment. Choose from two options: the ISRA Two-Course Webinar or the ISRA Expert Webinar – one webinar followed by customized analysis from technical experts.

With each ISRA Webinar, participants learn to:

• Identify the information assets within an organization.
• Analyze the threats associated with those assets.
• Develop the strategic plans and road maps for remediation.
• Capture and organize risk assessment data.
• Report on activities to meet compliance requirements.

For more information on our ISRA Webinar solutions or to sign up for a course, please contact a service representative today.

For more information on any of our services, sign up here!

Company First Name Last Name Business Email Phone Area(s) of Interest

Press Releases (View All)

January 8, 2010 Digital Defense Receives Major Vulnerability Scanner Validation From NIST View

Upcoming Webinars (View All)

March 10, 2010 Streamline Vulnerability Management with the Active View

March 18, 2010 Social Networks — Hackers Love Them Too

March 24, 2010 Maximize Threat Analysis with the RRC (Risks, Ratings and Certification)

This site has been optimized for FF2/3 and IE7/IE8. Site functionality may be reduced when utilized with other web browsing software.

© 1999-2010 Digital Defense, Inc. | Toll Free: 888.273.1412 | Home | Contact Us | Privacy Policy | VRT Advisories | Careers