AUGUST 2010
GET WELL PLAN:
THE INFORMATION SECURITY RISK ASSESSMENT
An Information Security Risk Assessment is a means of examining your IT infrastructure to identify vulnerable areas in the network and provide steps to secure them. Source: Encarta Dictionary, 2010.
Risk assessments are crucial in validating your company’s security policy, procedures, and infrastructure. This service provides a high-level overview of network security strengths and weaknesses, as well as a detailed analysis of network-connected resources. The risk assessment is often the first step in evaluating your overall security posture. We have said before that a Risk Assessment is similar to checking the doors and windows on your network. With all of the confidential corporate and customer information in your database, you would never consider leaving those doors and windows open. But beyond the entryways that are easy to see, are there other access points that are not so obvious? Learn more.
STANDARDS, REGULATIONS, BEST PRACTICES
A risk assessment is a systematic evaluation based on state and/or federal regulations, industry best practices, and client-specific needs.
In order to provide an objective, repeatable security management approach, ICS uses standards promulgated by ISO and the ISO 27002:2005 Code of Practice for Information Security Management. ISO 27002 guides the risk assessment, with supplementary information provided by ICS’s proprietary risk assessment methodology. ICS’ methodology combines the ISO 27002 standard with NIST 800-series framework to review business risks and identify effective security solutions. Learn more about Risk Assessments and other services from ICS, Inc.
ICS RESOURCE LIBRARY
Download these Risk Assessment resources in the ICS Online Resource Library.
AN INTEGRATED APPROACH TO INFORMATION
AND TECHNICAL SECURITY
ICS, Inc. is a Security-Focused, Business-Minded IT Solutions Provider with over twelve years experience providing information assurance, technical support, advisory assistance, and operational services. ICS is unique because we not only have an established track record of providing enterprise technology and security services to clients in the commercial field, public sector and education markets, but we also have a foundation in service with the United States Department of Defense. ICS extends its experience and skill to work for you with employees that bring a fresh perspective and new ideas to service our clients in all industry verticals.
Network Armor News is the periodic e-newsletter of Integrated Computer Solutions, Inc. If you have questions or comments, email us at Info@ICSInc.com,or call 877-ICS-INC9 or 334-270-2892.
© 2010 Integrated Computer Solutions, Inc. All rights reserved.