Information Risk and Readiness Assessment Programs

Thu, 02/21/2008 - 11:31 — cmock
Overview

 
IRAP Programs
  • Export Compliance (ITAR, EAR) Programs
  • NERC-CIP Compliance Programs

Information Risk Assessment and Information Readiness Assessment Programs

Get started on your Compliance Practice with the NextLabs Information Readiness Assesment Program.

Or improve and streamline your existing compliance and auditing practices with the NextLabs Information Readiness Assessment Program.

Both programs apply our unique Compliance Methodology jointly developed by IBM, SAP and NextLabs, and leverages the extensive database of best practices from IBM and NextLabs to provide recommendatons, options and budgetary requirements necessary to help you begin or improve your compliance practice.

GET YOUR COMPLIANCE PRACTICE STARTED TODAY!  

 

What the Two Programs Provide

The Readiness Assessment Program jump-starts your compliance activities by analyzing compliance capability gaps to develop a risk map and prioritize key elements.  It provides you an actionable plan to guide you in planning resources and initiatives to build the capacity to effectively and efficiently achieve compliance.

The Risk Assessment Program helps companies improve their existing compliance practice, and support internal audits or respond to external audits.

Both programs are designed to be convenient for you and transparent for your organization, making it easy to achieve fast results to help you understand where you are today, and where you need to be tomorrow to become export compliance capable.

Compliance Focused Offerings

As a framework for engagement, we employ our Compliance Assessment Methodology, jointly developed by our partners IBM, SAP and NextLabs, to apply clearly defined metrics to ensure consistent, repeatable assessments and measurements.

The Readiness Assessment Programs and the Risk Assessment Programs are focused on two lead areas of Compliance:

Export Compliance

  • Export Compliance (ITAR, EAR) Readiness Assessment Program
  • Export Compliance (ITAR, EAR) Risk Assessment Program

NERC-CIP Compliance

  • NERC-CIP Readiness Assessment Program
  • NERC-CIP Risk Assessment Program

The Readiness Assessment Programs and the Risk Assessment Programs are also available for other compliance and business objectives. Contact us today to learn more about these other programs in Intellectual Property Protection, Information Barriers, HIPAA, and many others! 

Readiness Assessment Benefits

Readiness Assessment Programs help you:

  • Gain an objective description of the existence and maturity of your processes, procedures, policies, people and documentation and their strengths and weaknesses relative to supporting compliance.
  • Understand your capabilities: the adequacy, potential impact and effectiveness of your current resources to control risks.
  • Begin building or strengthening your capabilities to achieve an effective and efficient compliance practice consistent with your business need

Risk Assessment Benefits

Risk Assessment Programs provide you the facts and recommendations needed to:

  • Automate regulatory compliance rules and information handling procedures:  Focus your internal auditing efforts, or respond to external audits by obtaining insight into the volume and types of regulated data and documentation that are vulnerable to leaking off corporate servers.
  • Identify or discover policy gaps: Gain awareness into potential non-compliance due to risky or undefined procedures.
  • Educate users on proper ways to handle regulated or controlled data and documentation.

Program Deliverables

Each program provides specific additional deliverables, but common deliverables across all programs include:

Compliance Risk or Readiness Assessment Report containing:

  • Your business type summary detailing your objectives and challenges, including a business profiling, outlining risk events, their likelihood, compliance risks, and control costs. This is summarized in a risk map providing you an overview of your risks and control costs.
  • The application of the Compliance Assessment Methodology to your systems, processes, procedures, policies, people and documentation and their major strengths and weaknesses, relative to compliance..
  • A gap analysis against best or common industry practices to compare your results to others.

 Risk Mitigation or Compliance Readiness Recommendations Report with:

  • Recommended strategies and improvements in policy and process framework.
  • Risk prioritizations, and an actionable plan including strategic options and estimated budgetary requirements necessary to focus your resources in building an effective practice to achieve compliance quickly.

Executive Review Workshop:

  • A workshop presenting to the senior management our findings and recommendations

For more information about the Information Risk Assessment Programs:

GET YOUR COMPLIANCE PRACTICE STARTED TODAY!  
 
Readiness-Assessment-Information-Risk-Management-Compliance-export-control-technical-data-itar-ear
Readiness-Assessment-Information-Readiness-Management-Compliance-NERC-CIP-cyber-security
White_Paper_Information_Risk_Management_Compliance_Information_Export_Control_ITAR_EAR
White_Paper_Information_Risk_Management_Compliance_Information_Governance_for_Microsoft_SharePoint