Who needs a Risk Analysis?
Regulations (HIPAA and Gramm/Leach/Bliley) will require any entity that electronically stores medical and/or financial records to conduct a Risk Analysis. 

Our Unique Process
Our Risk Analysis is unique in that it goes far beyond the reporting function.  We take it further by presenting you with a project management tool that includes a list of recommendations to be used in an overall Gap Analysis.  We identify threats, the severity of the threats, and the resources required to remediate vulnerabilities so that your action plan can produce an effective level of security. 

Our three-pronged approach to risk analysis covers administrative, physical, and technical issues.  Our analysis starts with the following assessments:  Policy/Procedure Review, Perimeter Testing to document all vulnerabilities inherent in your existing system, and an Internal Network Scan that mimics attack methods utilized by insiders as well as hackers that have breached your perimeter.

Project Management is the Key
Our vulnerability matrix is a project plan that allows your team to effectively implement remediation activities with a top-down, risk-based approach.  Recommendations are prioritized so that you can take a first-things-first approach to addressing any identified vulnerabilities, allowing you to establish acceptable risk.  Critical path analysis, resource planning, budgeting, and status benchmarks are key tools provided by our methodology.

Our matrix includes an index developed with the help of many security organizations and associations.  This algorithm helps your remediation team benchmark progress over time.  It organizes the report with the highest-risk, easiest-to-fix vulnerabilities at the top and the lowest-risk, hardest-to-fix vulnerabilities at the bottom.  Technical information is provided (in CD format) so that your technicians can drill down for more details when necessary.