Risk Analysis

Home Contents

Up

Introduction

Qualtrex's Risk Analysis assesses your IT Services, the existing policies and procedures and, where appropriate, will make recommendations in line with best business practices. We assess the risks that are inherent in every business system and business function. Existing controls, or counter measures, are also assessed, allowing any exposures to be identified. Where applicable and appropriate, extra controls are recommended to reduce risks.

Threats to information affect all users of that information in all businesses every single day. Knowledge of the dangers and threats can be an effective safeguard; as such knowledge can often prevent a potential problem from escalating into a major incident.

Duration

The duration of the service is dependant on what areas are included within the scope, but is normally completed within one working week.

Cost

The Risk Analysis Service is available for  €3,750

The Methodology

This service is conducted within a formal framework and to a defined format that will give a snapshot of the risks to the Management at a point in time so they can make informed decisions on how best to minimise the impact of those risks.

Initial Workshop

The purpose of the 1 day workshop is to define the scope of the Security Review Service and to nominate interviewees and agree timetable. The scope of this service must be correctly defined and agreed at the outset to avoid any difficulties or inconsistencies that may arise during the actual analysis stage. The scope is agreed through assessing which of the areas are applicable to the customer under review.

Structured Interviews

We conduct structured interviews with those individuals who are nominated as being responsible for the areas covered by the service. This method is designed to create minimal disruption to the day-to-day operation of the business.

The Report

The Security Analysis Service delivers a concise report on each of the areas covered by the Scope of the Service. The report comprises of;

  • Report Introduction

  • Scope of Risk Analysis Service

    This section describes the scope of the detailed risk assessment, including

    • the interviews completed

    • the names of the personnel who completed them

    • when they were completed

  • Document policies and procedures

  • Assessment of Non-Compliance against international best practice

  • Risk Analysis

    An assessment of each area of risk covered by the detailed risk analysis

  • Improvements required and recommendations

  • Risk Counter Measures

    Recommended counter measures for any identified vulnerabilities


 

 

Home ] Up ]

Send mail to webmaster@qualtrex.com with questions or comments about this web site.
Copyright © 2003 Qualtrex Service Management
Last modified: 10/20/03