|
|
ENTISAS©
Entisas© (ENTerprise Information Security Assessment System) is an Enterprise-wide Information Security repository useful for analyzing Security Risks, Threats and Vulnerabilities as well as mitigation plans and protections profiles and other information security elements across multiple organizations and organizational elements. Entisas© combines inputs from multiple risk assessments that can be performed by various collection tools or fed directly into Entisas©. Entisas© is based on Oracle and utilizes Coldfusion for data analysis, graphing and reporting.
Benefits:
- Common threat and vulnerability analysis and reduction in duplication.
- Common Asset identification and reduction in inconsistent risk mitigation plans.
- Establishing baseline for current security practices.
- Analysis of Mitigation Plans and Protection Strategies across organizations.
- Comparison of Action Items and possibility of sharing lessons learned among facilities.
- Central location for tracking Risk Assessment performance for organization and encouraging completion, providing guidance and support.
- Data analysis can lead to improvement in catalog of good practices.
- Possibility of tailoring catalog of good practices for specific applications based on comprehensive data (e.g. HIPAA).
- Central Risk Data Base can lead to improved data analysis by supplementing data collection tool by providing additional tables for data analysis (e.g. Asset Class).
- Standardization of fields/concepts within data repository will lead to more consistent security practices.
- Data repository will encourage Assessment completion by various facilities as a requisite to share data.
- Historical storage of RISK ASSESSMENT data can streamline performance of future Risk Assessments.
|
ENTISAS Start Page
|
