Sign in
Your Saved List Become a Channel Partner Sell in AWS Marketplace Amazon Web Services Home Help


CRM is often carried out as a part of the Foundational Roadmap in Cyber Strategy Assessment (CSA) engagement. The methodology to perform CRM is a combination of the following framework:

  • ISO/IEC 27001:2013 (Clause 6. Planning)
  • ISO 27005:2018
  • NIST Risk Management Framework (RMF)

This engagement covers all cyber risks associated with the information, systems, processes and IT assets at your organization. However, cyber risks associated with your organization's third party vendors will be delivered in a separate engagement (Third Party Security Risk Management).

The objectives of CRM are to establish risk governance, identity risk, assess risk, determine risk treatment plan and monitor the effectiveness of the plan and the whole implementation of cyber risk management itself.

Our Information Security Risk Management service covers all information security related risks associated with the information, systems, processes and IT assets at your organization, which include the following, but not limited to:

  • Technology and Information Security Management
    • Data protection management
    • IT operations
    • Logging and monitoring
    • IT audit and security assessments
  • Governance and Organization
    • Policies, procedures and standard
    • Resource management
    • Strategy and roadmap
  • System Management
    • Change management
    • Backup management
    • Asset management
    • Access management
    • Resilience and disaster recovery program
    • Etc.
  • Acquisition, Development, and Maintenance
    • DevOps
    • Software security

Standard deliverables and coverage are:

  • 1 (one) Risk Management Framework,
  • 1 (one) set of Information Security / Cybersecurity policies
  • 1 (one) time Risk Assessment
  • 1 (one) Final Risk Register
  • Up to 3 main services to be included


  • Information Security Risk Management - Standard
    • SGD 38,400
  • Information Security Risk Management - Custom Specification
    • Contact for custom scoping (project duration, assessment scope, location, etc.) and pricing tailored to your organization
Sold by Horangi
Fulfillment method Professional Services

Pricing Information

Dimension Cost
Standard Contact seller for rate


Horangi Sales Contact: