Risk Assessment
The Graham-Leach-Bliley Act (GLBA) and the Interagency Guidelines Establishing Information Security Standards require financial institutions establish an Information Security Risk Assessment. The development and maintenance of an Information Security Risk Assessment is a complex process that must identify threat likelihood, potential damage and risk level, define controls to mitigate identified threats and establish a compliance plan.
The CoNetrix Solution
CoNetrix offers an online solution to help you create your Information Security Risk Assessment. The online Risk Assessment includes:
- An easy to follow multi-step process
- A location management module to assist in identifying likelihood and potential damage based on physical locations
- A threat questionnaire with more than 100 questions to assist in quantifying the likelihood and potential damage associated with threats
- A confidential information management module to manage data classification and data flow, and to document the location of customer information and/or vital records
- A threat management module to manage controls, compliance, impact, and guidance associated with identified threats
Features
The CoNetrix Information Security Risk Assessment is feature rich, including:
- Multi-user access to the tool
- Integration with other CoNetrix online tools
- Downloadable documents in editable Microsoft formats or as Adobe PDF documents
- A storm event statistics report tool
- A one year subscription to updates
- The ability to manage several companies’ Risk Assessment with one login (this requires the purchase of a subscription for each company).
Links