An effective security program is not a one-time event, but a long-term commitment to manage the information risks of the organization. It combines skilled people, process, technology, and program leadership to effectively manage the information risks of the business and maintain a level of security over time.
In 2001, Solutionary developed SecurCompass in response to market needs to baseline current security program status in preparation for strategic initiatives including staffing, budgeting, and meeting regulatory compliance. Since then, Solutionary has conducted thousands of SecurCompass web-based security assessments in enterprise and SMB organizations in the United States and abroad.
SecurCompass includes 554 questions that can be broken into smaller online assessments based on your organization's needs and structure. If you want to assess by role, or by business unit, or by security category (there are seven), the SecurCompass online application can quickly and easily be parsed to do exactly that.
SecurCompass Includes:
Risk Measurement
- Identification of Business Goals and Issues
- Identification of Risk
- Risk Profiling
- Security Risk Quantification©
- Expected Cost Modeling
- Program Cost Estimation
- Economics of Security
Assessment and Compliance
- Program Cost Estimation
- Infrastructure Identification
- Scope, Team-Building, Timeline
- Assessment and Compliance Measurement
- Gap Analysis & Recommendations
Program Planning
- Program Cost Estimation
- Task Identification
- Resource Identification & Assessment
- Detailed Project Plan
- Staff Skill Alignment
- Technology and Services Cost Estimation
