Security Assessments

A security assessment is a one-time, or regularly scheduled review of your Information Security operations and/or processes. Rogue Security offers a number of security assessments that range in engagement time from 2 week to 2 months.



Privacy Impact Assessment

A Privacy Impact Assessment(PIA) can help to assess the risk to the privacy of Personally Identifiable Information(PII) of your employees, third-parties, and the one that could hurt your reputation the most, your clients.

Details

  • Time Estimate: ~2 weeks to ~2 months
  • Organization Participation: Minimal
  • Phase 1: Planning
  • Phase 2: Preliminary Risk Assessment & Risk Analysis
  • Phase 3: Risk Mitigation Determinations
  • Phase 4: PIA Report – Draft
  • Phase 5: PIA Report – Approval
  • Phase 6: PIA Report – Reporting
  • Phase 7: Review Meeting

Deliverables

  • Project Charter and Plan
  • Privacy Impact Assessment Report

The Rogue Security PIA program is done in accordance with the expectations set forth by the Office of the Privacy Commissioner of Canada(OPC) in regards to Privacy Impact Assessments


Privacy Impact Assessment

Privacy Impact Assessment Cover Page

Risk Assessment

Risk Assessment Cover Page

Risk Assessment Details and Deliverable's

A Risk Assessment can help to frame information security risk to your organization, and can you help you to identify:

  • Threats to your organization
  • Vulnerabilities both internal and external
  • The adverse affect given an exploit occurs, and
  • The likelihood of harm occurring

A Risk Assessment can also help to assess the risk to the privacy of Personally Identifiable Information(PII) of your employees, third-parties and, the one that could hurt your reputation the most, your clients.

Details

  • Time Estimate: ~2 weeks to ~4 weeks
  • Organization Participation: Moderate
  • Phase 1: Preparation
  • Phase 2: Risk Assessment
  • Phase 3: Assessment Review
  • Phase 4: Risk Assessment – Draft
  • Phase 5: Risk Assessment – Approval
  • Phase 7: Review Meeting

Deliverables

  • Project Charter and Plan
  • Risk Assessment Report

The Rogue Security Risk Assessment program is done with guidance from NIST SP 800-80r1