In an effort to make the process of cyber-security more accessible and present-in-mind, the U.S. National Institute of Standards and Technology has presented a framework that anyone can use to achieve cyber-security outcomes. It's not a checklist of actions, but it is helpful in managing risk, and compartmentalizing the following functions. If your business processes and asset control suffers from gaps in the following functions, it's time to call RiPPUL to help you achieve
RiPPUL Offers Vulnerability and Penetration Testing as part of a balanced approach to managing and understanding your security posture. One of the first questions I fire back to clients is, why do you think you need an audit? What is the baseline position you're starting from, and would resources be better served to examine other aspects or areas of your information security, or directed straight to implementation of a new firewall or other first-order-of-business solution.