Risk Management

• Risk Assessment
• ISO 27001, GLBA, HIPAA, DPA,FISMA, BS 25999
• Software Asset Management

PCI Compliance

• QSA Validation Services
  (PCI-DSS)
• ASV Scanning Services
• PA DSS Validation Services
  (PA-DSS)

Technical Security Services

• Application VA and Pen Test
• Secure Code Review
• Network VA and Pen Test
• Forensics

Risk Assessment

"Risk Assessment is the cornerstone of any Risk Management Practice. There is no purpose in applying controls unless you know what risks you are trying to mitigate"

Risk Assessment is the most critical and essential process for any organization. It provides the understanding about the possible threats, existing vulnerability and the actual impact at the business. Risk Management is the base process for number of other processes or activity.

We provide comprehensive and internationally accepted risk management service based of the OCTAVE (SEI-CMU) methodology. OCTAVE an acronym for Operationally Critical Threat Vulnerability Evaluation is a popular risk assessment methodology developed by Software Engineering Institute Carnegie Mellon University. SISA has pioneered commercial organization implementation using this approach. SISA also has an automated risk assessment module as part of its tool - SMART (www.sisasmart.com)