Workplace Recovery Support for

The CRISC Certification for Controlling Information System Risk
The Certified in Risk and Information Systems Control (CRISC) program was established by ISACA in 2010 to verify an IT professional's ability to design, deploy, and maintain information system controls to reduce network risk. Progent can provide the services of a CRISC-certified consultant to help you create and implement a business continuity or disaster recovery plan based on leading practices promoted by CRISC and geared to align with your company's risk tolerance, business objectives, and IT budget. These risk management services are complementary to the services available from Progent's CISA-certified consultants for objectively auditing your IS control design and operational effectiveness and with the services of Progent's CISM-certified experts for assessing your network security profile or implementing company-wide security.

Progent's Support for CRISC Focus Areas
The CRISC (pronounced "see-risk") certification program verifies a candidate's hands-on work experience and exhaustively tests skills in specific areas of risk mitigation:

• Risk identification, assessment, and evaluation
• Risk response
• Risk monitoring
• IS control design and implementation
• IS control monitoring and maintenance.

Progent offers a comprehensive selection of consulting services for each of the risk mitigation defined by CRISC.

Risk Identification, Assessment, and Evaluation
This area of risk mitigation covers gathering the information needed to create a risk management strategy that is relevant to your business. Consulting services offered by Progent in this area include:

• Collect information and review documentation to make sure you identify and evaluate significant risk scenarios.
• Identify legal, regulatory, and contractual requirements and organizational policies and standards related to your information system to determine their potential impact on your business goals.
• Identify potential threats and vulnerabilities for your business processes, associated data, and supporting capabilities to assist in evaluating your enterprise risk.
• Create and maintain a risk register to make sure all identified risk factors are considered.
• Compile risk scenarios to estimate the likelihood and impact of significant events that could disrupt your business.
• Analyze risk scenarios to determine their impact on your business goals.
• Develop a risk awareness program and conduct training to make sure your stakeholders understand information system risk so they can contribute to your risk management process.
• Match identified risk scenarios to your associated business processes to help determine risk ownership.
• Validate risk appetite and risk tolerance with your senior leadership and key stakeholders to make sure they are in agreement.

• Identify and evaluate risk response options and provide your management with information needed to make sensible decisions about responding to risk.
• Review risk responses with your relevant stakeholders to validate efficiency, effectiveness, and economy.
• Apply risk criteria to help you develop the risk profile for approval by your management.
• Help you develop risk response action plans to address risk factors identified in your organizational risk profile.
• Help you develop business cases supporting your investment plan to make sure risk responses are aligned with your business goals.

• Collect and validate data that measure key risk indicators (KRIs) to monitor and communicate their status to your relevant stakeholders.
• Monitor and communicate key risk indicators (KRIs) and management activities to assist your relevant stakeholders in their decision-making process.
• Facilitate independent risk assessments and risk management process reviews to ensure they are performed efficiently and effectively.
• Identify and report on risk, including compliance, to initiate corrective action and meet business and regulatory requirements.

• Interview process owners and review process design documentation to gain an understanding of your business process objectives.
• Analyze and document your business process objectives and design to identify required IS controls.
• Design information systems controls in consultation with process owners to make sure they meet your business goals.
• Help identify the people, infrastructure, information, and other resources needed to implement and manage IS controls at an optimal level.
• Monitor your information systems control design and implementation process to make sure it is implemented effectively and within time, budget, and scope.
• Provide progress reports on the implementation of your information systems controls to inform your stakeholders and to make sure deviations are addressed quickly.
• Test your information systems controls to verify their effectiveness and efficiency before they are implemented.
• Implement information systems controls to mitigate risk.
• Help define metrics and key performance indicators (KPIs) so you can measure your information systems control performance in meeting business goals.
• Evaluate and recommend tools to automate your information systems control processes.
• Provide documentation and training to make sure your IS controls are performed effectively.
• Make sure all your controls are assigned to owners who take responsibility for them.
• Establish control criteria to allow you to perform control life cycle management

• Plan, supervise, and conduct testing to confirm continuous efficiency and effectiveness of your IS controls.
• Collect information and review documentation to identify IS control deficiencies.
• Review your IS policies, standards, and procedures to make sure they address your company's internal and external requirements.
• Assess and recommend tools and techniques to automate your IS control verification processes.
• Evaluate the current state of your IS processes using a maturity model to identify the gaps between current and targeted process maturity.
• Determine how to correct IS control deficiencies and maturity gaps to ensure that deficiencies are appropriately considered and fixed.
• Maintain adequate evidence to support conclusions on the completeness and operating effectiveness of your IS controls.
• Provide IS control status reporting to your relevant stakeholders to help them make informed decisions.

Workplace Recovery Planning
Progent's business continuity engineers can show you how to create a workplace recovery strategy so you can restore IT functionality in the event of an IT system disaster. Progent can assist you to define a comprehensive disaster recovery strategy that incorporates scheduled disaster recovery evaluations and testing. Progent's Microsoft and Cisco-certified professionals can also help you create an affordable, zero-downtime network solution that takes into account availability issues involving a broad array of infrastructure technologies and processes. To read more, see Disaster Recovery Consulting Services.

Fault Tolerant Internet Connectivity
Progent's Cisco-authorized IT professionals can help you design an economical, fault tolerant Internet connection architecture that can achieve 24x7 Internet access via a broad array of fault tolerant Internet access technologies including fault tolerant BGP, automatic fail-over, and redundant Internet Service Providers. Progent can provide CCIE professionals to help you apply the most advanced technology for fault tolerant Internet connectivity to build an economical, completely redundant Internet interface with automatic failover and other features to deliver non-stop Internet availability. To read more, see Non-stop Internet Access Architecture.

Virtual Servers
Virtualization technology is central to any current disaster recovery solution. Virtual servers can be provisioned, updated, copied, and recovered rapidly and easily, providing a level of versatility for achieving high-availability almost impossible to meet with traditional physical servers. Progent can assist your company to design and implement a virtualized solution based on Microsoft Windows Hyper-V, which offers advanced business continuity features that include transparent system backup and live migration. Microsoft Windows Hyper-V can save much of the time needed for scheduled service, switching to emergency backup sites, and restoring business-critical functions. For more information, see Windows Hyper-V Virtual Server Consulting Services.

Windows Server 2012 Failover Clustering
Windows Server 2008 R2 brought world-class availability and system recovery to Microsoft's clustering platform. Windows Server 2012 adds to this foundation and delivers significant new and enhanced features offering increased scalability, better storage uptime for server applications, streamlined administration, faster automatic failover, and more flexibility for architecting failover clusters. For more information, go to Windows Server 2012 Failover Clustering Integration.

Windows Server 2008 R2 Failover Clusters
The clustering technology incorporated into the Datacenter and Enterprise editions of Microsoft Windows Server 2008 R2 is radically redesigned to streamline the deployment, setup, and administration of server clusters that offer greater levels of network dependability, security, efficiency, and versatility. New or improved capabilities include cluster verification, revamped setup and installation, unified cluster management, redesigned cluster infrastructure for increased availability, hardened security and quorum structure, fewer failure points, more disk and RAM capacity, and improvements for geographically dispersed clusters. To learn more, go to Windows ServerR2 2008 Clustering Support.

Network Load Balancing
Progent provides high availability load balancing consulting that addresses network load balancing, load balanced programs, network infrastructure routing, and content delivery technology including Cisco Content Engine. Non-stop load balancing solutions for which Progent offers consulting expertise include Microsoft Windows Server 2003 and 2008 Network Load Balancing Manager, Citrix Access Suite and Access Gateway, Cisco CSS, Cisco Content Distribution Manager and ACNS, and F5 Networks BIG-IP. For details, visit Non-stop Load Balancing.

Zero Downtime Internet Data Centers
Progent's Data Center professionals can show you how to find high availability data centers that meet the particular needs of your company. Fault tolerant co-location sites are especially appealing to small and mid-size businesses because of their affordability and simplified logistics compared to taking a do-it-yourself strategy. Attempting to design an on-site data center that offers even a minimum degree of fault tolerance is too costly for the majority of small companies. Progent is ready to show you how to get all the advantages of non-stop colo centers by providing a complete range of engineering and maintenance services. To read more, visit High-Availability Colocation Consulting.

Failsafe Branch Office Connectivity
Progent’s inter-site connection engineers can help organizations achieve fault tolerant inter-site connectivity solutions through redundant system architectures featuring transparent failover. Progent’s Cisco-qualified CCIE network engineers can plan and deploy high-availability Inter-office networks supported by non-stop EIGRP routers or fault tolerant OSPF deployment of Cisco routers. Progent can show you how redundant connections and transparent fail-over can provide economical non-stop interoffice connectivity. For more information, go to Non-stop Interoffice Networking.

Microsoft System Center Data Protection Manager (DPM) Backup and Recovery Consulting
Progent's expert Data Protection Manager (DPM) support professionals can help your company to create a practical disaster recovery strategy, design a cost-effective zero-downtime IT infrastructure, deploy a Data Protection Manager-powered backup and recovery system, thoroughly test your DPM system, educate your IT personnel or regular service providers how to manage DPM, or provide complete IT outsourcing services including off-site hosting of Data Protection Manager machines in Progent's secure data center facility. To read more, visit Microsoft Data Protection Manager Consulting.

Managed Offsite DPM Backup Service Package
Progent’s affordable Offsite Data Protection Manager Backup Service incorporates the advanced capabilities of System Center Data Protection Manager with the world-class security and availability features of the Herakles data center to provide ongoing, non-disruptive backup for as much as 2.5 Terabytes of critical data from one or several of your Windows-powered servers. Progent's service offering includes all configuration, support, and tracking required for a complete offsite backup system. For details, see Managed Offsite DPM Backup Service Package.

Backup and Recovery Solutions Consulting Services
Progent offers affordable remote support from consultants with expertise in a wide array of utilities and technologies that provide solutions for protecting Windows, Mac, and Linux/UNIX physical and virtual servers and desktops plus laptops and handhelds. Progent can provide help for leading backup platforms including Acronis, Backup Exec, BackupAssist, CrashPlan PRO, Double-Take Software, MozyPro, Retrospect for Macintosh, Apple Time Machine, VMware Data Recovery (VDR), and FLARs. Progent's consultants can assist your company to design, enhance, or troubleshoot data backup systems for a range of environments including local, edge to datacenter, cloud, or a mix. For details, see Backup and Recovery Solutions Consulting.

Consulting Services Double-Take Software for Backup
Double-Take offers a selection of products intended to deliver small businesses a range of cost-effective alternatives for backing up and restoring vital applications such as Exchange, Microsoft SQL, Blackberry, and Microsoft Office SharePoint. Progent’s business continuity planning experts have in-depth experience incorporating Double-Take Software products into small company IT networks to achieve a high level of fault tolerance and business continuity readiness at a budget-friendly price. To find out more, go to Consulting for Double-Take Software for Backup.

Why Pick Progent for Disaster Recovery/Business Continuity Planning?
Because Progent is a Microsoft Gold Certified Partner and provides professional application expertise for a broad range of small business software programs, Progent can assist clients to find efficient IT solutions that maximize the business value of your IT network. As a Registered Partner with Cisco Systems, Progent offers the services of qualified consultants and specialists with expertise in architecting, implementing and troubleshooting networking environments based on Cisco technology. The depth of Progent's technical know-how and Progent's sensitivity to the requirements of small and midsize companies make Progent a great partner for creating and running an affordable, high-availability network.

How You Can Contact Progent's Experts for Disaster Recovery Solutions Help
To get in touch with Progent about consulting support for business continuity planning, call 1-800-993-9400 or send email to fault-tolerant-help@progent.com.