Information Security Risk
 

§         Policy development

443 has developed policy frameworks for companies based on public standards and best practice guideline that address emerging audit and risk concerns.
 

§         Standards, Guidelines and Procedures

Following agreed policy outcomes, 443 develops standards, guidelines and internal procedures and control processes to support company wide implementation and monitoring.
 

§         Governance and Compliance

Strong corporate governance and compliance programs are increasingly issues for senior managers as company information assets become more widely accessible through electronic channels.  443 advises senior managers and risk officers in the development of corporate governance structures to ensure guidelines and procedures are current and being adhered to throughout the company.

§         Risk Assessments

443 undertakes a systematic approach to reviewing product systems to analyse and identify inherent risks against policy and business objectives.   Risks are then profiled and communicated to decision points together with recommended remedies and ongoing review and control processes.

§         Information Asset Profiling & Risk Management

443 undertakes a risk based approach to building a profile of those information assets that require an appropriate level of security control. The profile includes the impact if an information asset’s confidentiality, integrity or availability is ever compromised.

§         Business Continuity Planning
Supporting the overall business and data protection sound business continuity planning ensures protection of the most valuable data and service resumption in the event of unexpected interruption of core systems. 

443 undertakes a risk based approach to continuity planning based on reviewing business impact of disruption.  Our advise includes continuity strategies and planning and recovery planning.