HomeAbout UsServicesProductsResearchCareersContact UsContact Numbers
CiSACS (Comprehensive Industrial Security and Compliance Solution)
Tools
CiSACS Overview                                
Security Audit & Assessment        
Self Assessment           
Security Vulnerability Assessment  
   -Physical                                            
   -Operations                                       
   -Cyber                                                
Penetration (Verification) Testing    
Red Team Verification) Testing      
Compliance Gap Analysis                
Threat Modeling                                  
Risk Assessment & Analysis           
Mitigation & Remediation                 
Validation & Ceritification                
Industrial Legal Consultation          
Management                                       
 
Products                                               
Risk Manager CiSACS Module  
   -Overview                                            
   -How Does it Work?                          
   -Key Characteristics                         
   -Benefits                                              
   -Reports                                              
   -Industry Product Comparison       
 
   

As the "Industrial Module" for Risk Manager™, CiSACS now provides the process as well as the framework and tools to provide you with the most powerful and comprehensive industrial risk management and compliance tool available.

Risk Manager™ CiSACS Module provides a platform and mechanisms with which to analyze and manage all of the data collected from industrial secuirty and compliance audits, tests, and assessments. It can then automate risk calculations, correlate the data to organizational functions and business objectives, help prepare and manage mitigation strategies, manage work flow with task assignment and tracking, consolidate policies and procedures into an organizational knowledgebase, and measure compliance against industry and your internal standards and requirements. The CiSACS Module also adds additional knowledge bases that include Industry and SCADA specific devices and applications.

One of the most notable features of Risk Manager™ is its update feature, which automatically keeps asset owners up to date on the latest changes to industry standards, guidelines, best practices, and requirements, which can then be immediately applied to your infrastructure.

Risk Manager™ allows for customized vulnerability severity ratings, asset prioritization, standards prioritization, and a full range of customizable reports generation. Finally, Risk Manager™ provides support for Business Continuity and Disaster Recovery Plans, and offers several communication tools including an internal forum.

Modulo Risk Manager™ CiSACS Module helps organizations to:

  • Carry out Governance, Risk and Compliance gap analysis projects in an optimized way
  • Establish Physical, Operational, and Cyber risk assessment management processes
  • Perform controls based as well as vulnerability based security assessments
  • Develop a risk scorecard by providing executive management with an enterprise overview of risks, including indices and metrics
  • Achieve results that are aligned with all applicable industrial guidelines and regulations
  • Deliver a business-related industrial risk profile and prioritize investments according to each asset’s potential impact/importance  to the organization.
  • Track how the organization's risk profile is evolving
  • Ensure the delivery of a centralized risk and compliance management capability and process
  • Provide the ability to develop a geo-reference vision of risks
  • Carry out more efficient and cost-effective audits
  • Manage security requirements in multiple audits, therefore eliminating redundant costs and unnecessary controls
  • Support implementation requirements for your internal standards as well as industrial standards including, but not limited to, ISO 17799 / 27002, ISO 27001, API 1164, ISA 99, NERC CIP, NIST 800-53, NIST 800-82, CFATS, TSA Pipeline Security Guidelines
  • Support Business Continuity Plans with easy maintenance and quick retrieval of information and procedures, aligned with standard BS 25999 and other standards
  • Facilitate event management in a logical and decentralized way
  • Facilitate interdepartmental cohesion between Process Control and Enterprise environments

 

How Does it Work?  >>          

 


 

© Copyright 2009, CIDG, Corp. All Rights Reserved.