Security Risk Management
ERG delivers risk management services in accordance with the internationally recognised standard, ISO 31000: Risk Management. Having analyzed an organization and the context within which it operates, threat and business vulnerability assessments are conducted, prior to risk analyses. Penetration tests may be carried out to assess existing security systems.
Having determined the greatest risks to an organization, ERG can work with you to design risk mitigation strategies, which implement and maintain appropriate and cost-effective physical and information security systems, and business resilience solutions.
During this context building phase of ERG Security Risk Management, we develop a detailed understanding of your organisation, its resources and assets, structure, culture and risk appetite.
What can we do?
Threat & Vulnerability Assessments
Security by Effect © Assessments and Audits
Security by Effect © Designs
Embed Advisors at Strategic, Regional and Site Level
Design Security Risk Management Policies
Design Security SOPs
Design Crisis Management Plans