Osics professionals now part of the IAPSC community!
Risk involves uncertainty about the effects/implications of an activity with respect to something that humans value, often focusing on negative, undesirable consequences.
Our risk assessment process is similar to the compliance assessment with the exception that we are determining overall risk. It is important understand that as regulatory requirements and the environment changes so does the risk assessment process.
Additionally, we make an over risk determination based on your business goals and acceptable level of risk. We include;
Our risk assessment service is primarily a follow up to the gap analysis. It includes a gap analysis and vulnerability scan as the first steps in the process. The risk assessment will take into account current organization practices as well as the acceptable level of risk. These assessments are not necessarily security based, but an industry standard should be considered. Additionally, we will conduct testing, examination of environment and interviews to verify findings. No supporting documentation or artifacts are created during this assessment.
Contact us for a free consultation to determine how we can help!