Information Security Threat & Risk Assessments

An information security threat and risk assessment is the process to define, locate and categorise the information assets associated with your business, determine the security threats and vulnerabilities associated with those assets, and to mitigate those threats in line with your business goals.

Risk Crew can help you identify, locate and document your business-critical information assets.  We will then confirm the value of these assets with your stakeholders and compile the results in an information asset register for your reference.  Once done, we will then identify, quantify and classify the security threats to your business information assets.The results provide clear security objectives for your architecture, policies, procedures, employees, testing, incident response and business continuity planning as well as a roadmap for budgeting.

The service is scoped to meet your specific business or compliance requirements and we issue “Completion Certificates” to enable your business to produce evidence of compliance to ISO27001 or the PCI DSS requirements.

Our experienced consultants hold ISACA CISSP, CISM and CRISC certifications ensuring they consider and address your business objectives throughout the service.  All of our consultants are subject to full initial (and routine ongoing) background security checks.

Give us a call and tell us how we can help.

For flat fee pricing structure and full service level agreements detailing service specifications, scope and deliverables for any of the above services or to place an order, contact Risk Crew.