Vital Advisory work with you to bring your
VPDSF in on time, with real security benefits
Getting benefit from your VPDSF requires more than filling templates. It needs depth of understanding around your organisation, its goals, information assets and security risks. We work with you to build understanding of your risk profile. Our experts then help determine effective and efficient measures to assess and manage those risks – processes which become part of your work routine. This is the real aim of your VPDSF.
How we assist
Regardless of where you are in your VPDSF project, Vital Advisory can prepare a structured and comprehensive framework which addresses your key information security risks. We help by:
- Identifying your full set of stakeholders and information assets.
- Identifying which risks pose a genuine threat to your goals
- Selecting the right mix of technical and procedural measures to protect your data
- Documenting your Information Asset Register (IAR), Security Risk Profile Assessment (SRPA) and Protective Data Security Plan (PDSP)
- Ensuring smooth operation of your VPDSF through monitoring, maintenance and organisation-wide understanding of your VPDSF goals.
Our focus reaches beyond simple compliance to making sure you achieve benefits in processes and cost structures. Expert review of your security and governance practices is key to making these benefits real. See below for our Assistance and Organisational Packages.
Select from the following assistance packages. Fixed-pricing options are available for most packages. If you require assistance based around your organisational role, see our Function Packages further down the page.
Organisational Function Packages
If you need information security assistance for your organisational division, select from the following function packages. Fixed-pricing options are available for most packages.
Contact us to discuss how we can help your team achieve their role in your VPDSF implementation.
PARI (Process, Asset and Risk Identification) uses an A3 on-a-page approach to document how your organisation operates, what information assets you manage, what systems you rely upon, who your internal and external stakeholders are, and finally what are your key information security risks.
We capture this information through a series of workshops with the primary business heads of your business and IT operations. The end product is an ISMG (Information Security Mandates and Guidances) Handbook which presents the risk and control landscape for your agency in a way that any internal or external stakeholder can use to quickly understand your security priorities and what their part in the process is.
For samples of our documentation approach, please use the above contact button.
Vital Advisory’s expertise covers Risk Management, Information Security, Business Continuity, Strategic Planning and Assurance. We have assisted many government and private organisations to implement information security projects – from small gap assessments through to full Information Security Management Systems, achieving certification for the ISO-27001 global standard.
Contact us today to discuss how we can assist you.