SMART up your Risk Assessment

www.smart-ra.com

Why Risk Assessment

• Because you cannot manage risk if you haven’t measured it effectively.

• Because Risk Assessment is mandatory from a compliance stand-point: PCI, HIPAA, SOX, SAS 70, ISO 27001.

• Because a well executed Risk Assessment means a lot less effort in Risk Mitigation.

www.smart-ra.com

Still Using Spreadsheets?

• Using spreadsheets to measure risk is a risk in itself.

• Standards like PCI 2.0, ISO 27001, HIPAA, SAS 70 and SOX mandate a structured and formal risk assessment methodology.

• Spreadsheets can be a cluttered, unstructured way to manage your assets, threats and vulnerabilities.

• When a technical risk assessment has 550 assets, each averaging 4 threats and 3 vulnerabilities, imagine mapping controls to every ATV using a spreadsheet.www.smart-ra.com

Improve your Risk Assessment

www.smart-ra.com

What You Need

Formalize Use a structured Risk Assessment methodology like ISO 27005, OCTAVE or NIST SP 800-30.

Automate Gain savings on time, cost and effort.

Simplify Simplicity helps greatly, especially if you have a huge asset inventory.

Get there. Get SMART• SMART is a Risk Management Tool that simplifies, automates and

formalizes your risk assessment.

• SMART is based on OCTAVE, ISO 27005 and NIST SP 800-30 standards.

• Multi Compliance – Measure Risk Once, Comply with many standards – PCI 2.0, ISO 27001, HIPAA, SOX, SAS 70, FISMA, FISAP, GLBA, etc.

• Save on control costs – SMART’s patent pending IS-RA methodology selects and implements controls suited to the organization’s unique requirements.

www.smart-ra.com

Sign up for FREE

• The Personal Edition of SMART is free for use.• Sign up now.

www.smart-ra.com

www.smart-ra.com