With the ever-changing landscape of technology and threats in an increasingly complex network of data exchange, maintaining awareness and effective management of security vulnerabilities is a full-time responsibility. Identifying these vulnerabilities and establishing sound practices and configuration controls can greatly increase an organization's security posture and improve its ability to avoid future vulnerabilities.

Our Risk Analysis service investigates your organization's systems, networks, operations, and procedures to determine exposures to known threats. Less invasive than our Penetration Testing service, Risk Analysis takes a holistic approach to identifying weaknesses in security by investigating all aspects of your information management process and systems.

Once vulnerabilities and their effect on the security of valued data assets are identified, Supra’s security consultants can help you develop a comprehensive plan to address the technology and operational weaknesses.

Supra’s security consultants deliver the Risk Analysis service in four phases:

• Planning: Determine the scope of systems and processes, interview key players to determine critical points within the network, and collect information to determine priorities and execution processes.
• Design: Develop a process to locate and measure vulnerabilities and create appropriate testing procedures.
• Implementation: Analyze and review information with customer staff in regular meetings to determine findings and recommendations.
• Operations: Work with customer to create an outline of procedures to improve security and reduce vulnerabilities.