Horangi Information Security Risk Management
By:
Horangi
Horangi's Information Security Risk Management or Cyber Risk Management (CRM) is a systematic approach to manage risks associated with the operations and use of data, information, systems, including the environments where the systems operate.
Overview
CRM is often carried out as a part of the Foundational Roadmap in Cyber Strategy Assessment (CSA) engagement. The methodology to perform CRM is a combination of the following framework:
- ISO/IEC 27001:2013 (Clause 6. Planning)
- ISO 27005:2018
- NIST Risk Management Framework (RMF)
This engagement covers all cyber risks associated with the information, systems, processes and IT assets at your organization. However, cyber risks associated with your organization's third party vendors will be delivered in a separate engagement (Third Party Security Risk Management).
The objectives of CRM are to establish risk governance, identity risk, assess risk, determine risk treatment plan and monitor the effectiveness of the plan and the whole implementation of cyber risk management itself.
Our Information Security Risk Management service covers all information security related risks associated with the information, systems, processes and IT assets at your organization, which include the following, but not limited to:
- Technology and Information Security Management
- Data protection management
- IT operations
- Logging and monitoring
- IT audit and security assessments
- Governance and Organization
- Policies, procedures and standard
- Resource management
- Strategy and roadmap
- System Management
- Change management
- Backup management
- Asset management
- Access management
- Resilience and disaster recovery program
- Etc.
- Acquisition, Development, and Maintenance
- DevOps
- Software security
Standard deliverables and coverage are:
- 1 (one) Risk Management Framework,
- 1 (one) set of Information Security / Cybersecurity policies
- 1 (one) time Risk Assessment
- 1 (one) Final Risk Register
- Up to 3 main services to be included
Pricing
- Information Security Risk Management - Standard
- SGD 38,400
- Information Security Risk Management - Custom Specification
- Contact sales@horangi.com for custom scoping (project duration, assessment scope, location, etc.) and pricing tailored to your organization
| Sold by | Horangi |
| Categories | |
| Fulfillment method | Professional Services |
Pricing Information
This service is priced based on the scope of your request. Please contact seller for pricing details.
Support
Horangi Sales Contact: sales@horangi.com