Risk Assessment

Risk Management, as defined in the AS/NZS 4360 Risk Management Standard is "the systematic application of management policies, procedures and practices to the tasks of establishing the context, identifying, analysing, assessing, treating, monitoring and communicating".  A Risk Assessment is the part of the Risk Management Framework that identifies and assesses your threats, vulnerabilities and associated risks to your organisation to assist in determining necessary security controls to mitigate those risks.

eSecure has extensive experience in undertaking Risk Assessments in a wide variety of market segments.
eSecure has developed and utilises a common methodology to assess your organisation’s security posture relative to the requirements of the “AS/NZS ISO/IEC 27001:2006 Information technology - Security techniques - Information security management systems – Requirements” standard.  This risk assessment aims to provide your organisation with an appraisal of the current state of security of your Information environment.  Similarly, the assessment also seeks to be able to provide findings against measures considered common industry good practice and the requirements of the “AS/NZS ISO/IEC 27001:2006 Information technology - Security techniques - Information security management systems – Requirements” standard.

The output of your risk assessment will identify the necessary security controls required to provide the level of assurance that your organisation requires, based on your risk position.