| Home |
| NIST SP 800-53 |
| NIST SP 800-34 |
| BS ISO/IEC 27002:2005 |
| Reports & Forms |
| Sample Incident Report |
| Emergency Contacts |
| Key Personel |
| IT Security Quiz |
| Tools & Techniques |
| Sample Company Page |
| Contact Us |
| Use our
Business Impact Analysis, Asset Valuation, and Risk Assessment tools to select, prioritize, schedule, and develop protection mechanisms for your mission critical assets based on available resources. |
What We Provide
|
SECURITY WEB SITES WHY YOU NEED OUR PRODUCT An educated and aware user is the foundation of a secure and reliable IT environment! |
|
Your company, its customers, and vendors rely heavily
on information technology (IT) to meet operational, legal, financial,
and administrative requirements. The destruction, corruption, unauthorized disclosure, modification, or theft of sensitive company information could
1) disrupt operations, 2) bring about
financial and legal problems, and 3) cause clients or
customers to lose confidence in the company and its ability to conduct
business. Consequently - in accordance with
recognized "best practices" - you must proactively safeguard
information assets.  Disaster Recovery Journal (Winter 2011) states the following: 1) "A single incident of data loss can cost a company an average of $10,000;" 2) "Ninety-three (93) percent of companies that lost their data for 10 days or more filed for bankruptcy within a year;" and 3) "Forty (40) percent of businesses that suffer a loss of data fail within 5 years." Federal Computer Week (circa October 2003) states that Government agencies spend anywhere from $25,000 to $400,000 per system or application to implement Federal Information Security Management Act's (FISMA) Certification and Accreditation (C&A) and/or Security Assessment and Authorization (SA&A) programs for the protection and/or recovery of information assets. Are your company's information assets any less vital to your business? Why reference the Federal Government's FISMA C&A or SA&A process? No organization has invested as much in Cybersecurity research, development, implementation, and documentation than the Federal Government! These standards and guidelines are more comprehensive than anything most private organizations could develop! Furthermore, the government encourages private industry to take advantage of IT security standards and guidelines developed by the National Institute of Standards and Technology (NIST), the Office of Management and Budgets (OMB), and other government agencies. Specifically, we have integrated the following standards/guidelines in our product: NIST SP 800-34 Contingency Planning Guide for Federal Information Systems, NIST SP 800-53 Recommended Security Controls for Federal Information Systems and Organizations, and BS ISO/IEC 27002:2005 IT Security Techniques Code of Practice for Information Security Management, among others. Our team of Certified Information System Security Professionals (CISSP) has streamlined those processes incident to developing and documenting Risk Management and Business Continuity Planning by providing more integrated, interactive, and user friendly tools and techniques using familiar Common Office Environment (COE) components. Consequently, we have been able to curtail much of the inefficiencies inherent in developing and documenting risk management and contingency planning requirements without costly proprietary systems and/or applications. Most importantly, we have significantly reduced the cost of documentation, implementation, and validation by developing processes and techniques that can be implemented, maintained, and/or managed by your existing staff - without the high cost of consultants and/or contractors who will, first, have to learn your systems and applications. By using our product - which is NOT a "cookie cutter" template - you will have a comprehensive business continuity management program in place for a fraction of the cost and in significantly less time!
|
|
| Why You Need Our Product | Where Our Product Fits | PURCHASE PRODUCT |