Risk Management

Risk management is the task of identifying and plugging all the internal vulnerabilities and external risks to the organisation's security. RSIM, the security information management system from NetMonastery's CNAM security suite offers risk management as an inbuilt feature that enables an organisation to analyse and measure the risks to its assets, arrive at a risk score, create a risk baseline and formulate counter measures to keep the security in check. RSIM performs the task of the risk management with the aid of following processes:

Risk base-lining

RSIM based on the criticality of the asset assigns an asset score to each and every asset of the organisation. The criticality and the value of the asset are determined based on the Confidentiality, Integrity, Availability (CIA) ratings. These ratings classify the value of each asset in three categories viz. High, Medium and Low. RSIM sums the asset score of all the existing assets of the organisation and calculates the risk-index. Based on the trends of the risk index over a period of time, the CTO/CISO arrives at an average risk index score that is termed as a threshold score for the security analysts to maintain. This process of determination of the threshold risk index score and the activities involved in this process are termed as Risk base-lining.

Vulnerability assessment

RSIM has an inbuilt vulnerability scanner that is run on the assets of an organisation. The vulnerability scanner identifies the vulnerabilities in the assets deployed in the IT infrastructure. Based on the asset score, the organisation arrives at a vulnerability score. If the vulnerability score is above the risk baseline, RSIM reports it in the form of a ticket, acting in co-ordination with its incident management and ticketing feature. The vulnerability is then open for resolution. This vulnerability assessment feature of the RSIM is on offer for unlimited use and can be run on the assets as many times as required.

Automated Security Audits

The purpose of security audits is to identify any configuration issues pertaining to the security of the organisation. RSIMs automated security audit feature facilitates this need of the organisations and can be run on the assets to arrive at an audit score based on the asset score. If the audit score is above the risk baseline, RSIM reports it in the form of a ticket, acting in co-ordination with its incident management and ticketing feature. The configuration error/issue is then open for resolution. This automated security audit feature of the RSIM is on offer for unlimited use to the organisation and can be run on the assets as many times as required.
 

RSIM thus ensures that each and every asset of an organisation is accounted while determining the potential risk to IT security and thus enables an organisation to effectively mitigate and manage the risks efficiently.