RISK ASSESSMENT (RA) PACKAGE
​
VAGE assists organizations conduct a risk assessment, whose purpose is to inform decision makers and support risk responses by identifying:
-
Relevant threats to the mission of an organization
-
Vulnerabilities both internal and external to an organization
-
Impact (i.e., harm) to an organization that may occur given the potential for threats exploiting vulnerabilities
-
Likelihood that harm will occur
OUR RA PROCESS
Our experienced VAGE Risk Assessment team will take away the stress from decision makers, allowing them to focus on other organizational tasks. Our RA package is designed to assess risk at the 3 structural risk management tiers of an organization (Organizational, Business/Mission, and System level tiers), consistent with the NIST 800-30 Risk Assessment guide.
VAGE simplifies this process by streamlining the steps to a few objective-oriented processes:
-
First, the client and VAGE will agree on the scope of the RA and determine the risk framing focus. This encounter allows the client to point to the critical areas of their organization where the RA will focus. This can be achieved through interview or just completing a comprehensive generic VAGE template that touches on all areas within the 3 tiers of the risk management hierarchy.
-
Secondly, VAGE will delve deep into framing the risk using its rich library of resources and experienced evaluators. The identified treats will be quantitatively and qualitatively assessed for likelihood of occurrence, and the impact of any potential harm to the organization. Our assessment will culminate with a written report that provides security recommendations, and baseline requirements for assets that the organization would need to cost-effectively protect its mission or business.
-
Email us at info@vagesecurity.com
​
