DirSec :: Risk Analysis

DirSec :: home

Home
Events/About Us
Contact/Support
Core Technologies
- Actiance
- Aerohive Networks
- AlienVault
- Axway
- Barracuda Networks
- Blue Coat Systems
- Bradford Networks
- Brocade
- Cenzic
- Check Point Technologies
- Cyber-Ark
- Dell/Force10 Networks
- Drobo
- ESET
- Exinda Networks
- Extreme Networks
- F-Secure
- F5
- FireMon
- ForeScout Technologies
- Gigamon
- HP
- Imperva
- Juniper
- Lumension Security
- M86 Security
- McAfee
- Palo Alto Networks
- Q1 Labs
- Rapid7
- RSA Security
- ScriptLogic
- Sophos
- Trend Micro
- Trustwave
- VMware
- WatchGuard
- Websense
- WhiteHat Security
- ZixCorp
Demos on Demand
Services
Knowledge Wiki

Risk Analysis

Risk analysis plays a role in corporate governance and performance, ensuring that senior management allocates resources in the most cost-effective way to balance information security with business needs. The risk analysis process must link security exposures and business needs; otherwise risk analysis may lead to too much or too little information security.

The DirSec Risk Analysis process varies according to your organization’s particular needs and skills, as well as the particular risk analysis tools deployed.
Fundamentally, the risk analysis process must answer these questions:
- What can go wrong?
- What is the probability that, what can go wrong will go wrong?
- What are the consequences?

Real-world risk analysis goes beyond the answers to these questions. Risk analysis identifies and evaluates business processes and supporting information systems, potential system vulnerabilities and threats, calculated risks and the effectiveness of possible controls. Once these steps are completed, the process should be repeated on a regular basis to ensure that the decisions made and controls implemented continuously reduce risk while effectively meeting business needs and goals.

Our Risk Analysis service typically contains most - if not all - of the processes previously discussed, and are customized to the environment and the compliancy issues faced by your organization including HIPAA, SOX, GLBA and FISMA.
We perform this service both onsite and offsite. The overall process varies depending on compliancy requirements and the organization the work is being provided for. Our Risk Analysis service not only provides your organization with a technical assessment of vulnerabilities, but also provides business justification and prioritization for implementing security controls.

Upcoming Events:

2012 Events Calendar

Mar. 8th - Barracuda Velocity Tour hits Denver! - Lunch in DTC sign up here

Mar. 15th - Lunch & Learn @ Micky Mantle's - Oklahoma City with Bradford Networks and Palo Alto Networks
sign up here

Apr. 12th - Lunch & Learn @ MacKenzie's Chop House - Colorado Springs with Check Point
sign up here

Apr. 25th - Lunch & Learn @ Sullivan's Steak House - Omaha with Bradford and Aerohive Networks sign up here

Apr. 25th - DirSec booth @ IT Summit Denver view details/register to attend

Vendor Updates:

!! M86 Security - "Youtube for Schools" solution summary View the PDF

Risk Analysis

Upcoming Events:

Vendor Updates:

Core Technologies: