Risk Management

We can help you with planning and preparation for specific cyber security incidents so that you can ensure a focused, effective, and efficient response when you need it.

Receiving a call at 2.00am from your ICT staff alerting you to a breach is not the time to start devising a response to a cyber security event.

Cyber Security Plans and practice run throughs are important to ensure everyone knows how to respond.

Want to know more?

Contact us on 04 917 6670 or sales@sss.co.nz if you would like to know more about cyber security planning.

Workshops

We will conduct workshops with your relevant business stakeholders to help us understand your critical business processes and functions that we need to consider for your cyber security plans.

Cyber security plan development

We then develop cyber security plans for you. These may consist of artefacts such as:

• incident response processes / playbooks
• business continuity management (BCM) plans
• disaster recover (DR) plans

Training

We provide training for your relevant staff who will need to use and maintain the newly developed / updated cyber security plans. This could include testing your plans to understand how the plans should be applied against real-life scenarios.

A Risk Assessment provides you with an understanding and overview of your organisation's cyber security risk exposure, and helps you prioritise remediation and mitigation efforts so you can efficiently reduce the risk of a cyber security incident to your organisation.

Want to know more?

Contact us on 04 917 6670 or sales@sss.co.nz if you would like to know more about risk assessments.

Benefits of risk assessments to your organisation

Using a risk-based (rather than a compliance-based) approach helps ensure the efficient use of your resources aligned to specific business risks. 

The service provides:

• direct assistance in selecting a cyber security risk model or customising the use of your organisation's existing model
• an analysis and assessment of risks present due to gaps in your security posture
• risk-prioritised recommendations for remediation and mitigation efforts to  address identified gaps.

How we deliver a risk assessment

• Define options available for cyber security risk models
• Assist with the selection of a model best suited for your organisation
• Review the results of a cyber security gap analysis
• Conduct a risk assessment of the findings from the gap analysis
• Provide risk-prioritised recommendations for remediation or mitigation efforts to address identified gaps
• Producing a full cyber security risk assessment report that includes risk-rankings, risk-prioritised recommendations for remediation or mitigation efforts to address identified gaps, and an executive summary consumable at the executive level

Your cyber security risk management framework forms the foundation of your organisation’s cyber security risk management efforts.

The risk management framework will provide your organisation with:

• The ability to develop and implement a mature risk management model, which leads to an effective, efficient, and repeatable process for managing cyber security risk.
• Development of the foundation necessary to include cyber security fundamentals and best practices across the entire organisation.
• A repeatable process to identify risks, prioritise remedial efforts and monitor effectiveness.

How we deliver a risk management framework

We tailor a framework that will best suit your needs. It will include the following, as relevant:

• Risk identification
• Risk measurement and assessment
• Risk treatment approaches and priorities
• Risk monitoring and reporting
• Risk communication
• Risk governance

Want more information?

Contact us on 04 917 6670 or sales@sss.co.nz if you would like to know more about risk management frameworks.