Risk Management

Risk management process integrates recognition of risk, risk assessment, developing strategies to manage it, and mitigation of risk using fit for purpose resources. In Information Security quantification of risk requires a through understanding of the value of the information assets. Risk Management strategies include, implementation of applicable controls, transferring the risk to another party, avoiding the risk, reducing the negative effect of the risk. Operational Risk Management is central to compliance with Basel II and certification of ISO27001.

Organizational Management

Organization Security Management involves the development of the necessary security roles and responsibilities. During this process the security organization get setup within the structure of the organization, this delivers an effective security management framework. Organizational implementation must address size, complexity, diversity, corporate culture, geographic coverage and centralization versus decentralization operational models.

Policy Management

The effective implementation of security requires a structure approach to policy management. Policies are directives which communicate to employees the rules and behaviors within the organization framework. This process outlines the specific requirements and rules that have to be met in order to implement security management. The process ends with Policy, Standards, Baselines, Procedures and Guidelines.

Physical Security Management

Physical security management as become an integral part of Business security management and complements the processes of information security management. Physical security involves the implementation of controls associated with access control, visitor management, evacuation management, ID management, Close Caption TeleVision CCTV Management, Intelligent video processing, Watch List Management, Biometric Controls, Smart Cards Controls, Assets relocation Management.

Identity Management

Identity Management involves the implementation of structured life cycle to manage entities (from creation, to destruction of subjects or objects). During this process identity must be established also known as identification. Best practices in identification involve the implementation of three factor authentication controls (something you are, something you have, something you know). Once identity is determined authorizations take place based on organizational policies allowing access to information resources and organizational process. Electronic Identify Management is implemented via the usage of PKI open standards. In a Services Oriented Architecture- Paradigm, the implementation of an Identity Federation and Single Sign-on technologies becomes key to successful deployment and acceptance of this process.

Governance & Compliance Management

Corporate governance applies a structured set of processes, and customs to address compliance with policies, laws regulations and institutions affecting the way in which a corporation is administered or controlled. Corporate governance also includes the relationships with the stakeholders involved and the goals for which the corporation is governed. The organizational players are the shareholders, management and the board of directors. Other stakeholders include employees, suppliers, customers, banks and other lenders, regulators, the environment and the community at large. Corporate governance is a complex and multi-faceted process. It must address issues of accountability and fiduciary duty, advocating the implementation of policies and mechanisms to ensure good corporate behavior and protect shareholders/stakeholders assets. This process is given recent interest due to the  high-profile collapses of a number of large U.S. and E.U. firms such as Enron Corporation, Parmalat and Worldcom. Key regulations apply such as SOX, HIPAA, Basel II, EMV 2, AML and PCI.

Vulnerability Management

Vulnerability management process addresses the identification, testing, disclosure and removal of vulnerabilities from the organization ICT infrastructure to manage the a associated risk exposures. On of the key process and steps in Vulnerability management is vulnerability assessments which involves the discovery, cataloging of ICT assets and identification of associated vulnerabilities. The vulnerability management process must also be tightly integrated into the Patch Management Process, Threat Management and System Development Life Cycle-SDLC  Security Management Processes.

Threat Management

Threat management involves the implementation of a framework and model in which the possible types of attacks are considered and defined. One can define many separate threat models for an ICT system allowing resources to focus on a more narrow set of possible attacks to focus on. By having a threat management process  your organization can assess the probability, the potential harm, the priority of attacks, and from this to try to minimize or eradicate the risk associated with these threats by implementation of applicable controls. Threat modeling has also become an integral part of SDLC security management process. The fundamentals behind threat modeling and management are that threats are realized through attacks which can materialize through certain vulnerabilities if they have not been mitigated with appropriate countermeasures.

Patch Management

Patch management process involves the identification of vulnerabilities for ICT systems and associating them with the necessary corrective measures (patches, fixes). The Patch Management is a corrective process in information security management, and must take into account, system dependencies, complexities of operation, cycles of operations, size and deployment. Patches must include all the elements of the infrastructure: firmware, Operating Systems, Network Devices, Databases, and Applications.

Records Retention Management

Records Retention Management process is part of information life cycle, document and records management structure. Based on regulation, policies, corporate governance the appropriate retention strategy must be architected and implemented. The records retention is not only a critical part of corporate asset management but also deals with requests for forensic investigations and criminal investigations. Records retention are also driven by key corporate processes based on industry vertical: Telecommunications (CDRs), Financial (Transactions), Transportation, etc...

Information Protection Management

Information protection management process starts with an information protection policy. The Policy provides rules and guidelines to users on the processing, storage and transmission of sensitive information. Main goal is to ensure information is appropriately classified and protected from modification or disclosure. Applicable controls can also be added to the ICT environment which minimize the exposure to leakage of vital corporate information. Recent scandals of large information disclosure associated with the mis-management of laptops and portable media devices have focused further attention on this critical security process. In many organizations all employees must sign policy as part of their employment of contract the associated policy.

Incidence Response Management

Incident response management involves the monitoring and detection of security events on the various ICT assets within the organization network. The incidence response process must address the execution of appropriate responses to those events. Based on event filtering, and correlation analysis a structured approach is developed to  document well understood and predictable response to damaging events and security intrusions. Incidence Response Management also involves in creating a skilled team within the organization which is devoted to optimize the response to incidents and coordinate the response with elements internal and external to the organization. Incidence response is also an vital element of ISO27001 and BS15000 certifications.

Business Continuity Management

Business Management and the associated sub-processes such as Business Continuity Planning (BCP) are structured approach used to create and validate a practiced logistical plan for how an organization will recover and restore partially or completely interrupted critical function(s) within a predetermined time after a disaster or extended disruption. The Business Continuity Planning-BCP, Disaster Recovery Planning-DRP, Enterprise Risk Management-ERM and associate plans provide the necessary logistics during an extended business disruption. The BCP protects and prepares the organization against future incidents that could jeopardize the organization's core mission and its longterm sustainability. BCP includes planning for local incidents like building fires, regional incidents like earthquakes, or national incidents like pandemic illnesses.  PAS56 and BS25999 provide a certification method for complying with this management approach.

Security Metrics Management

ISO25000, OSSTMM, OWASP and CoBIT provide the management approach to establish a comprehensive security metrics management program. Through the usage of score card methods security metrics can easily be presented to Executives, Technical Management and Security staff. Security Metrics must address all the elements of security including: Events, Incidents, Reliability, Performance, Availability, Physical Security, Compliance and Governance. Security metrics also provide a basis to establish a full operational risk management approach to security management.

SDLC Security Management

System Development Life Cycle Security Management allows an organization to introduce security best practices either they develop or or outsource application and systems development. SDLC security must be adapted base on the types of life cycle used by the organization: waterfall, prototyping, process control or outsourcing models. SDLC security management enables the early introduction of security into the ICT deployment process, substantially reducing the cost and greatly enhancing the effectiveness of security deployments.

ISMS Management

Information Security Management System-ISMS forms the basis for part 2-ISO27002 of the ISO2700 series. The key elements of ISMS is for an organization to design, implement and maintain a coherent suite of processes and systems for effectively managing information security. The objectives of the ISMS implementation to effectively and efficiently ensure the protection of confidentiality, integrity and availability of information assets and minimizing information security risks through the introduction of appropriate controls. ISMS must be adapted over time--an ISMS must remain effective and efficient in the long term, adapting to changes in the internal organization and external environment. ISO/IEC 27001 incorporated a PDCA--"Plan-Do-Check-Act" (PDCA) approach to continuous improvement.

Forensics  Management

Forensics Management allows an organization to introduce the necessary processes to protect the evidence required during and after any security incident. Appropriate protection of information associated with the security events is critical to the analysis and potential prosecution of  attackers in a court of law. Forensic Management allows the collection of evidence in a manner which is acceptable in a court of law.

    

Home Land Security

Home Land Security Services focus on the internal protection of the country critical infrastructure:

• Emergency preparedness and response (terrorism, natural disasters), includes medical, police, and fire personnel
• Emergency Management;
• Domestic intelligence activities;
• Critical infrastructure protection;
• Border security, includes both land and maritime borders;
• Transportation security, including aviation and maritime transportation;
• Biodefense;
• Detection of radioactive and radiological materials;
• Research on next-generation security technologies.

Web defacement management

Our we defacement management solution gives you complete protection. If create a protected copy of the web site , detects defacements, restores the orginal web site contents. It also keeps the defacement attack for forensic purposes and analysis giving complete web defacement protection.
     

Posted on January 23th, 2008 by Webmaster