SecureAware Risk TNG

• Would you like to know the business impact of security risks?
• What if you could assess business risks with a process compliant with international standards and less expensive than your current method?

 

SecureAware Risk TNG offers you several responsible short-cuts to reduce your time spent or to cut your risk management costs. We reduce the number of questions you'll need to assess by linking relevant threats with your asset types.  To further reduce the number of needed interviews, Risk TNG uses risk metric inheritance from dependent assets. So now you can also assess your business processes, IT services, vendors, systems as well as the usual more tangible assets such as logical and physical servers, data centers, etc.

The New Generation

SecureAware Risk TNG offers a yet unseen extreme usability to anyone involved in assessing the IT related risks of any organisation. The new generation risk assessment solution is based on the principles of ISO 27005, NIST SP800-30 as well as a significant amount of collected experience. Despite a significant number of advanced features, most users will see only a few simple assessment questionnaires.

New Risk TNG functions include:

Asset Management

 

• Asset overview and -management for both large and small organizations.
• Flexibility: All types of assets and responsibilities in relation to these assets can be registered as required in ISO 27001/2.
• Create dependencies between assets.
• Group similar assets for batch assessments.
• Exchange data between SecureAware and other applications: Web services API for data exchange with inventory systems or vulnerability scanners.

 

Threat Management

• Hierarchical threat catalogue makes it easy for an organization to consider which threats are relevant.
• Pre-defined suggestions to relevant threats for different types of assets.
• Save time: Only focusing on relevant threats reduces the number of assessment questions to answer.
• Web services API.

Risk Management

• Threat-based risk assessment.
• Flexibility: Assess the risk of any asset type. Assess business impact for processes or services, and vulnerability for systems or services. It often makes sense to assess business impact at a high level, and vulnerability assessment at a more detailed level.
• Risk values are inherited down-or upwards through dependencies in the asset database.
• More than one person can participate in assessing the same asset. For example, people from different parts of the organization.
• Web services API.

Reporting and Usability

• Dashboards with graphs showing assets, risk and project status can be viewed both in reports and the user interface.
• Reporting per project (e.g. by department) or consolidated for the whole enterprise.
• New and improved user interface requires fewer clicks and makes risk assessments faster.

Try

Download a free trial of SecureAware Cloud. Installs easily on a server or PC

Or try SecureAware as a Service

More information

Risk TNG brochure

SecureAware IT GRC solution overview

SecureAware IT GRC solution overview brochure

Other brochures and resources

Keep me posted about this