Risk Management

Whether your organisation is in banking & finance, manufacturing, retail or any other market sector, technology plays an essential role in today’s business environment. Utilising this technology also brings associated risks, of which an organisation must manage appropriately.  For this reason, Risk Management is recognised as an integral part of any business, and it is important that your Risk Management framework incorporates Information Security risk management.

Having worked extensively in the banking & finance, federal and state government, transportation, mining and telecommunications industries, eSecure has significant experience in developing Information Security Risk Management Frameworks. A common Risk Management Framework used today is outlined below.

eSecure utilise a number of Information Security and Risk Management standards including AS/NZS 4360 Risk Management Standard, AS/NZS ISO/IEC 27001:2006 Information technology - Security techniques - Information security management systems – Requirements Standard and HB 231 Information Security Risk Management.

These standards are used as baseline frameworks, and the associated processes adapted to meet the requirements, structure and risk position of your organisation.