INFORMATION RISK MANAGEMENT | ASSESS INFORMATION RISK

Information Risk Management: Assess Risk

1. Information Risk and Vulnerability Assessment
2. Network Security and Architecture Review
3. Application/Product Security Review
4. Compliance and Information Risk Management >> Learn More
5. Privacy Assessment Review >> Learn More
6. Business Impact Analysis >> Learn More
7. Physical Security Assessments >> Learn More
8. Logical Access Control Assessments
9. Attack and Penetration Testing >> Learn More

Our clients benefit from our Information Risk Management capabilities because of our experience and understanding that information security is about managing risk. Our Information Risk Management services are based on the three phases of the security lifecycle: Assess risk, reduce risk, and manage risk including operations. In this first phase, we assess information risk to ensure you are investing your resources based on an accurate depiction of the true risk.

Information Risk and Vulnerability Assessment
Knowing what your information risks are is the foundation for protecting your business and your technology investment.

Network Security and Architecture Review
Our Network Security and Architecture Review provides you with a deep understanding of your network security posture by performing a comprehensive review of your network, servers, applications, and services. You benefit from our independent perspective and our prioritized recommendations based on Information risk levels.

Application/Product Security Review
A key differentiator of Terra Verde Services is that we are not a provider or reseller of security or technology products. This provides us with the ability to assist you on an “unbiased” basis. Our Application/Product Security Review professionals use a methodology that includes working with you to understand your needs, utilizing our product experience and researching options, and finally matching the product capabilities with the business needs.

Compliance and Information Risk Management
Our Compliance and Information Risk Management services arm you with a well-structured program and knowledge you need to secure and protect your critical data assets. Our compliance work positions our clients to “pass” PCI DSS assessments performed by QSAs, customer audits, and regulatory requirements such as HIPAA.

Privacy Assessment Review
With the increased federal oversight for the safeguarding of protected health information (PHI), Terra Verde Services’ Privacy Assessment Review provides a wide range of services that are critical to compliance with the HIPAA privacy/security rules and the HITECH Act of 2009.

Business Impact Analysis
With our Business Impact Assessment, we collect information about your business that is unique.

Physical Security Assessments
During an onsite assessment, Terra Verde Services professionals often times perform Physical Security Assessments.

Logical Access Control Assessments
In addition to evaluating physical access controls, Terra Verde has a methodology for performing Logical Access Control Assessments. Whether we assist our clients with the ability to consolidate their physical and logical infrastructure or we help them solely with logical access, they are assured their people have only the access they need to perform their job functions.

Attack and Penetration Testing
Terra Verde Services has developed a multi-phased program that is very effective in testing external and internal system and network security. This program includes controlled Attack and PenetrationTesting in which we will attempt to gain access to designated systems.