MENU

Risk Management

We can help you understand, manage, and reduce your cyber security risks

The risk environment is not static, and your mitigation can't be either.

You must respond to changes and continuously monitor and manage risk.

We have a range of services that can help you understand cyber security risk in relation to your business and put you into a position of understanding so that you can prioritise remediation efforts with the resources you have available. 

Want to know more about how our risk management solutions can help you? 

Contact us on 04 917 6670 or sales@sss.co.nz if you would like to know more about our risk management solutions.

Request more information

grc section Solutions

  • Cyber Security Plans

    We can help you with planning and preparation for specific cyber security incidents so that you can ensure a focused, effective, and efficient response when you need it.

    We can help you with planning and preparation for specific cyber security incidents so that you can ensure a focused, effective, and efficient response when you need it.

    Receiving a call at 2.00am from your ICT staff alerting you to a breach is not the time to start devising a response to a cyber security event.

    Cyber Security Plans and practice run throughs are important to ensure everyone knows how to respond.

    Want to know more?

    Contact us on 04 917 6670 or sales@sss.co.nz if you would like to know more about cyber security planning.

    Request more information

    Workshops

    We will conduct workshops with your relevant business stakeholders to help us understand your critical business processes and functions that we need to consider for your cyber security plans.

    Cyber security plan development

    We then develop cyber security plans for you. These may consist of artefacts such as:

    • incident response processes / playbooks
    • business continuity management (BCM) plans
    • disaster recover (DR) plans

    Training

    We provide training for your relevant staff who will need to use and maintain the newly developed / updated cyber security plans. This could include testing your plans to understand how the plans should be applied against real-life scenarios.

  • Risk Assessments

    A Risk Assessment provides you with an understanding and overview of your organisation's cyber security risk exposure, and helps you prioritise remediation and mitigation efforts so you can efficiently reduce the risk of a cyber security incident to your organisation.

    A Risk Assessment provides you with an understanding and overview of your organisation's cyber security risk exposure, and helps you prioritise remediation and mitigation efforts so you can efficiently reduce the risk of a cyber security incident to your organisation.

    Want to know more?

    Contact us on 04 917 6670 or sales@sss.co.nz if you would like to know more about risk assessments.

    Request more information

    Benefits of risk assessments to your organisation

    Using a risk-based (rather than a compliance-based) approach helps ensure the efficient use of your resources aligned to specific business risks. 

    The service provides:

    • direct assistance in selecting a cyber security risk model or customising the use of your organisation's existing model
    • an analysis and assessment of risks present due to gaps in your security posture
    • risk-prioritised recommendations for remediation and mitigation efforts to  address identified gaps.

    How we deliver a risk assessment

    • Define options available for cyber security risk models
    • Assist with the selection of a model best suited for your organisation
    • Review the results of a cyber security gap analysis
    • Conduct a risk assessment of the findings from the gap analysis
    • Provide risk-prioritised recommendations for remediation or mitigation efforts to address identified gaps
    • Producing a full cyber security risk assessment report that includes risk-rankings, risk-prioritised recommendations for remediation or mitigation efforts to address identified gaps, and an executive summary consumable at the executive level
  • Risk Management Frameworks

    Your cyber security risk management framework forms the foundation of your organisation’s cyber security risk management efforts.

    Your cyber security risk management framework forms the foundation of your organisation’s cyber security risk management efforts.

    The risk management framework will provide your organisation with:

    • The ability to develop and implement a mature risk management model, which leads to an effective, efficient, and repeatable process for managing cyber security risk.
    • Development of the foundation necessary to include cyber security fundamentals and best practices across the entire organisation.
    • A repeatable process to identify risks, prioritise remedial efforts and monitor effectiveness.

    How we deliver a risk management framework

    We tailor a framework that will best suit your needs. It will include the following, as relevant:

    • Risk identification
    • Risk measurement and assessment
    • Risk treatment approaches and priorities
    • Risk monitoring and reporting
    • Risk communication
    • Risk governance

    Want more information?

    Contact us on 04 917 6670 or sales@sss.co.nz if you would like to know more about risk management frameworks.

    Request more information