ERE Information Security Auditors
Home | Site Map | Contact Us | Blog | Cyber Security News | Resource Center
This text is replaced by the Flash movie.
 list of IT security and compliance audit steps
ERE Differentiators from other vendors

Executive Strategies for Managing Risk
 
 

Identifying Network Security Risks

  • ERE provides top down risk analysis to identify security, privacy, and compliance risks and translates them into business costs. We identify and correlate threats and compliance violations and calculate risk with textbook industry standard methodology:
    • STRIDE and DREAD risk assessment.
    • ROSI (Return on Security Investment).
    • Annual loss expectancy and residual risk.
  • Show clients how to estimate costs of potential legal liabilities, damage to reputation, loss of production, and how to incorporate them into the IT Governance process.
  • Our methodology of discovery is the IT security compliance audit.
  • Ron Lepofsky has published several articles on how to manage IT Security risk:

chess

IT Security Compliance Audit

Our IT security compliance audit service correlates network security risks with the audit points of any applicable compliance standard. We act as risk security auditors by associated both a business risk and a technical risk with each security vulnerability.

  • Correlate security and privacy risks we identify with industry standards and regulations.
  • Triage and rate each risk to prioritize remediation steps.
  • Calculate the potential business cost for each risk.
  • Create a pro-forma business case to cost justify all the recommendations within our IT Security Compliance Audit.

Computer Security Compliance Verification

ERE information security auditor service makes it easier for clients to answer their financial auditor’s questions with regards to IT security, with our computer security compliance verification:

  • We respond to each pre-determined control point identified by the auditor with our periodic compliance audit.
  • We provide the requisite ongoing process to identify compliance violations and how to fix them. with our 7x24 security and privacy compliance audit.
  • We examine compliance with all the auditors’ control points and we never forget to identify fundamental Security Internet threats and risks.

IT Security Governance Consulting

Corporate Overview

  • Our sole business is providing IT security / privacy services: IT security compliance audit, privacy audit, risk analysis, and consulting.
  • Clients: asset managers, electrical utilities, financial / mortgage managers, software developers, real estate managers
  • More details in the Corporate Information page.
Top
 
 

Contact Us

905 764 3246
info@ere-security.ca
 
 
  Budgetary Price Quote
  10 minute scope definition call
  ROI Calculation for your next Audit 
  Sanitized Statement of Work
  Sanitized Audit Report
  Product Literature  
  White Papers and Published Articles
   
  Daily Cyber Security News
 
Home | Technology Audits | Compliance Audits | Process Audits | Doc Audit/Authorship| | 7x24 Monitoring | Knowledge Transfer
ERE Differentiators | About Us | Site map | Contact Us | Blog | Cyber Security News | Resource Center
Copyrights © 2007-2008. All rights reserved.  Non-security resources 1|2|3|4|5|6|7|8|9|10

   AddThis Social Bookmark Button