Symantec spawns risk assessment service

Stephen Withers
Thursday, 04 October 2007 09:09

Your IT - Home IT

Symantec's Foundation IT Risk Assessment service is intended to provide an overview of an organisation's current IT risk exposure and guide any necessary remediation.

Meant as a first step towards a comprehensive IT risk management program, the program is offered through the company's consulting group.

"Businesses today are dealing with an increasing amount of pressure to understand all of their own unique IT risks that could impact their infrastructure, threaten their core business or jeopardise compliance," said Steve Simpson, lead principal security consultant at Symantec's business advisory services unit. 

"In addition to IT leaders, senior executives also need to understand the current status of their IT risk posture in order to implement a larger risk management plan."

The program uses frameworks and standards such as the Information Technology Infrastructure Library (ITIL) and BS17799 (Code of Practice For Information Security Management). 

Clients receive a full report which includes an executive summary of the organisation's IT risk posture as well as tactical and strategic recommendations.