The CRISC Certification for Controlling Information System Risk
The Certified in Risk and Information Systems Control (CRISC) program was established by ISACA in 2010 to verify an IT professional's ability to design, deploy, and maintain information system controls to manage network risk. Progent can provide the services of a CRISC-certified consultant to help you identify, quantify, mitigate, and monitor risks throughout your information network, including both technology and business processes.
Progent can also help you create and implement a risk management strategy based on leading practices promoted by CRISC and geared to align with your company's risk tolerance, business objectives, and IT budget. Areas covered by Progent's risk management services include business continuity planning and disaster recovery preparedness. Progent's risk management services are complementary to the services available from Progent's CISA-certified cybersecurity audit consultants and Progent's CISM-certified cybersecurity management experts.
Progent's Support for CRISC Focus Areas
The CRISC (pronounced "see-risk") certification program verifies a candidate's hands-on work experience and exhaustively tests skills in specific areas of risk management:
Progent offers a comprehensive selection of consulting services for each of the risk management domains defined by CRISC.
- Risk identification
- Risk assessment
- Risk response and mitigation
- Risk and control monitoring and reporting
This area of risk management covers gathering the information needed to create a risk management strategy that is relevant to your business. Consulting services offered by Progent in this area include:
- Collect information and review documentation to make sure you identify and evaluate significant risk scenarios.
- Identify legal, regulatory, and contractual requirements and organizational policies and standards related to your information system to determine their potential impact on your business goals.
- Identify potential threats and vulnerabilities for your business processes, associated data, and supporting capabilities to assist in evaluating your enterprise risk.
- Create and maintain a risk register to make sure all identified risk factors are considered.
- Compile risk scenarios to estimate the likelihood and impact of significant events that could disrupt your business.
- Develop a risk awareness program and conduct training to make sure your stakeholders understand information system risk so they can contribute to your risk management process.
- Match identified risk scenarios to your associated business processes to help determine risk ownership.
- Validate risk appetite and risk tolerance with your senior leadership and key stakeholders to make sure they are in agreement.
This area of risk management involves the analysis and evaluation of IT risk in order to drive strategic risk management decisions that provide optimal support for business objectives. Consulting services offered by Progent in this area include:
Risk Response and Mitigation
- Frame the analysis of identified risk scenarios in the context of your company's structure, policies, and control mechanisms in order to assess each scenario's likelihood and consequences.
- Review existing risk controls and assess their ability to reduce information system risk.
- Study the findings of risk and control analysis to identify possible disconnects between the actual and intended readiness of your risk management environment.
- Make sure that risk ownership is properly assigned to clarify the chain of accountability.
- Review risk assessment findings to appropriate stakeholders to inform risk management strategy.
- Incorporate the risk assessment findings in the risk register.
This area of risk management involves developing and implementing risk responses to ensure that risk factors and events are handled effectively and in line with your business goals and IT budget. Consulting services offered by Progent in this area include:
Risk and Control Monitoring and Reporting
- Identify and evaluate risk response options and provide your management with information needed to make sensible decisions about responding to risk.
- Review risk responses with your relevant stakeholders to validate efficiency, effectiveness, and economy.
- Apply risk criteria to help you develop the risk profile for approval by your management.
- Help you develop risk response action plans to address risk factors identified in your organizational risk profile.
- Help you develop business cases supporting your investment plan to make sure risk responses are aligned with your business goals.
This area of risk management addresses monitoring risk and communicating information to your relevant stakeholders to ensure the continued effectiveness of your company's risk management strategy. Support services available from Progent in this area include:
Other High Availability Solutions Supported by Progent
- Collect and validate data that measure key risk indicators (KRIs) to monitor and communicate their status to associated stakeholders.
- Monitor and communicate key risk indicators (KRIs) and management activities to assist your relevant stakeholders in their decision-making process.
- Facilitate independent risk assessments and risk management process reviews to ensure they are performed efficiently and effectively.
- Identify and report on risk, including compliance, to initiate corrective action and meet business and regulatory requirements.
- Interview process owners and review process design documentation to gain an understanding of your business process objectives.
- Design information systems controls in consultation with process owners to make sure they meet your business goals.
- Help identify the people, infrastructure, information, and other resources needed to implement and manage IS controls at an optimal level.
- Implement information systems controls to mitigate risk.
- Help define metrics and key performance indicators (KPIs) so you can measure your information systems control performance in meeting business goals.
- Provide documentation and training to make sure your IS controls are performed effectively.
- Assess and recommend tools and techniques to automate your information system control verification processes.
- Make sure all your controls are assigned to owners who take responsibility for them.
- Establish control criteria to allow you to perform control life cycle management.
Progent's Microsoft and Cisco-certified engineers can assist your company to implement an efficient, high-availability IT architecture that addresses major challenges encompassing a wide range of infrastructure technologies and processes including:
Disaster Recovery Planning
Progent's disaster recovery professionals can show you how to create a workplace recovery plan that will allow you to restore network operations in the event of an IT system disaster. Progent can assist you to develop a comprehensive disaster recovery plan that incorporates scheduled disaster recovery evaluations and testing. Progent's Microsoft and Cisco-authorized professionals can also help you build an affordable, high-availability network architecture that takes into account availability issues involving a broad range of network technologies and procedures. For details, see Workplace Recovery Consulting.
Fully Managed Cloud Backup: ProSight Data Protection Services
ProSight Data Protection Services from Progent provide small and mid-sized businesses an affordable and fully managed solution for reliable backup/disaster recovery. For a low monthly cost, ProSight DPS automates and monitors your backup processes and allows fast restoration of critical data, apps and virtual machines that have become unavailable or corrupted as a result of hardware breakdowns, software bugs, natural disasters, human mistakes, or malware attacks like ransomware. ProSight Data Protection Services can help you protect, retrieve and restore files, folders, applications, system images, as well as Microsoft Hyper-V and VMware virtual machine images. Critical data can be protected on the cloud, to an on-promises storage device, or to both. Progent's backup and recovery specialists can deliver world-class expertise to configure ProSight Data Protection Services to be compliant with government and industry regulatory standards like HIPPA, FIRPA, PCI and Safe Harbor and, whenever necessary, can assist you to recover your business-critical data. Learn more about ProSight DPS Managed Backup.
Microsoft Server 2016 Disaster Recovery
Progent's Windows Server 2016 disaster recovery/business continuity consultants can assist your organization to plan and deploy a disaster recovery system built around Microsoft's most advanced Failover Clustering technologies including Cluster Operating System Rolling Upgrade for non-disruptive migration to Windows Server 2016, Storage Replica for crash-consistent Recovery Point Objective (RPO), Storage Spaces Direct for high-performance network-attached storage using industry-standard equipment, Virtual Machine Load Balancing for enhancing the speed and resilience of Failover Clusters while minimizing capital investment and operational expenses, and Cloud Witness for easy, affordable deployment of a stretch cluster quorum witness. To read more, visit Windows Server 2016 Disaster Recovery and Business Continuity Expertise.
Microsoft Server 2012 Failover Clustering
Windows Server 2008 R2 introduced enterprise-class availability and recoverability to Microsoft's clustering solution. Microsoft Windows Server 2012 R2 adds to this technology and provides significant new and enhanced features that offer more extensibility, better disk storage uptime for server applications, easier management, quicker automatic failover, and more options for architecting clusters. To find out more, see Windows Server 2012 Clustering Consulting and Support.
VMware Site Recovery Manager (SRM) Disaster Recovery Solutions
VMware's Site Recovery Manager (SRM) is a component of VMware vCenter that allows you to specify, automate and test a repeatable process for recovering services rapidly following a breakdown. SRM supports centrally controlled and automated disaster recovery, application mobility, and non-disruptive site migration, failback and re-protect. SRM also supports non-intrusive testing for site recovery, updates and patches and can generate reports to confirm complete service recovery, validate SLAs and prove DR compliance. Progent offers the skills of a VCDX certified VMware Site Recovery Manager consulting expert to assist you to plan, deploy, test and maintain a DR solution based on VMware SRM.
NetApp MetroCluster High Availability and Disaster Recovery Software
NetApp MetroCluster is a disaster recovery platform that combines failover storage clustering with continual replication to provide rapid, zero data loss disaster recovery between sites located as far as 300km apart from each other. Progent offers the skills of a certified NetApp MetroCluster expert who can help you to plan, deploy, manage, update, test and troubleshoot a disaster recovery solution based on NetApp MetroCluster. Progent can assist you to choose an architecture for your MetroCluster deployment that meets your technical needs and IT budget. Progent can make sure you follow best practices for installing your MetroCluster solution by delivering help with tasks like assigning shelf IDs, arranging aggregate and plexes layout, setting up FlexVol volumes, setting up Data ONTAP configuration replication service, installing Cisco and Brocade switches, designing a tiebreaker mechanism, setting up a configuration replication network between your storage clusters, and verifying your disaster recovery system to show compliance with industry standards and regulatory mandates.
Fault Tolerant Load Balancing
Progent offers high availability load balancing consulting covering network load balancing, load balanced programs, LAN/WAN infrastructure routing, and content dispatching products such as Cisco Content Engine. Non-stop load balancing products for which Progent offers consulting expertise include Windows 2003 and 2008 Server Network Load Balancing Manager, Citrix Access Suite and Access Gateway, Cisco Content Services Switch, Cisco Content Distribution Manager and ACNS, and F5 Networks 3-DNS. For details, visit High Availability Load Balancing.
Fault Tolerant Data Centers
Progent's Data Center professionals can show you how to select zero-downtime data centers that match the particular requirements of your company. Fault tolerant off-site data centers are especially attractive to small and mid-size organizations due to of their low cost and convenience in comparison to pursuing a do-it-yourself approach. Trying to create an in-house data center that offers even a minimum level of fault tolerance is too expensive for the majority of small businesses. Progent can help you reap all the benefits of 24x7 Internet data centers by providing a complete array of engineering and support services. For details, go to High-Availability Internet Data Centers Expertise.
24x7 Interoffice Networking
Progentís inter-site network infrastructure professionals can help organizations achieve non-stop interoffice connectivity solutions via fully redundant networks featuring transparent failover. Progentís Cisco-premier CCIE network engineers can design and implement high-availability Inter-office networks supported by fault tolerant EIGRP routers or zero-downtime OSPF configurations of Cisco routers. Progent can show you how redundant connections and transparent fail-over can provide economical non-stop interoffice networking. To learn more, go to 24x7 Inter-office Networking.
Non-stop Internet Access
Progent's Cisco-authorized IT engineers can show you how to create an affordable, high availability Internet connection architecture that can deliver non-stop Internet access through a wide array of fault tolerant Internet access technologies including fault tolerant BGP, transparent fail-over, and multiple Internet Service Providers. Progent offers Cisco Certified Internetwork Expert engineers to show you how to utilize the latest techniques for 24x7 Internet access to implement a cost-effective, completely redundant Internet interface with automatic failover and other capabilities to deliver fault tolerant Internet availability. For more information, go to High Availability Internet Access Architecture.
Backup and Restore Technology Consulting Services
Progent offers economical remote access to engineers skilled in a wide array of products and technologies that deliver solutions for protecting Microsoft Windows, Apple Mac, and Linux servers and workstations plus laptops and handhelds. Progent offers help for leading backup products including Acronis Backup and Recovery, Backup Exec, BackupAssist, CrashPlan, Double-Take, Mozy, Retrospect, Apple Time Machine, VMware vSphere Data Protection (VDP), and Oracle Solaris FLARs. Progent's consultants can help your company to install, upgrade, or troubleshoot backup systems for a variety of architectures including local, edge to datacenter, cloud-based, or a mix. To learn more, visit Backup and Recovery Technology Expertise.
System Center Data Protection Manager (SCDPM) Backup and Recovery Consulting Services
Progent's expert Microsoft SCDPM support professionals can help your company to develop a practical disaster recovery strategy, design an affordable fault-tolerante network infrastructure, configure a Microsoft SCDPM-based backup and recovery system, thoroughly validate your DPM system, educate your administrative personnel or regular consultants how to manage Microsoft SCDPM, or provide complete IT support outsourcing including remote hosting of Microsoft SCDPM servers in Progent's secure data center. For more information, see Microsoft System Center Data Protection Manager Consulting.
Barracuda Backup Cloud and Offsite Backup and Disaster Recovery
Barracuda Backup is an affordable, subscription-based backup/restore platform for small and mid-size businesses. A Barracuda Backup deployment can incorporate a custom-designed hardware storage device manufactured by Barracuda or a virtual appliance with similar features but which utilizes your own storage infrastructure. Barracuda Backup safeguards critical business data generated locally, at one or more remote locations, or in the cloud. For disaster protection, you can replicate data to the Barracuda Cloud, to Amazon AWS, or to any location with a physical or virtual Barracuda Backup appliance. Progent is a Barracuda partner and Progent's Barracuda Backup consultants can provide a wide array of consulting services to help your business to design, configure, operate and troubleshoot a backup and disaster recovery solution built on Barracuda Backup. For more information, go to Barracuda Backup and disaster recovery consultants.
Altaro VM Backup Solutions for Data Protection and Disaster Recovery
Altaro VM Backup software offers small and mid-size organizations a dependable and affordable platform for backing up and recovering Hyper-V and VMware-based virtual machines. Altaro VM Backup can be deployed in local, offsite, distributed, and cloud-hosted environments and also supports low-cost backup to Microsoft Azure Block Blob storage. Headline capabilities include state-of-the-art Augmented Inline Deduplication to cut backup storage needs, Continuous Data Protection with backup spacing as little as five minutes for reducing your Recovery Point Objective (RPO), advanced encryption, granular restore options for individual files and emails, support for Windows CSV and vCenter for handling large-scale environments, and support for Microsoft VSS technology to back up online virtual machines without downtime. Progent is an Altaro partner and can provide a broad range of consulting services to assist you to plan, install, optimize and troubleshoot a backup and disaster recovery solution based on Altaro VM Backup. For more information, visit Altaro VM Backup Consulting.
Consulting for Double-Take Solutions for Data Backup and Recovery
Double-Take publishes a family of tools designed to provide small businesses a variety of affordable alternatives for backing up and recovering business-critical applications such as Exchange Server, SQL Server, Blackberry, and Microsoft SharePoint. Progentís disaster recovery planning experts have in-depth backgrounds incorporating Double-Take technology into small company information systems to create a high level of fault tolerance and disaster recovery capability at a budget-friendly cost. For more information, visit Consulting Services Double-Take Software for Data Backup.
Why Pick Progent for Disaster Recovery/Business Continuity Planning?
Since Progent is a Microsoft Certified Partner and offers specialized application support for a wide variety of business software programs, Progent is able to assist customers to arrive at efficient IT solutions that optimize the business value of your network. As a Registered Partner for Cisco, Progent offers the expertise of certified engineers and specialists with experience in architecting, configuring and managing networking environments built on Cisco technology. The depth and breadth of Progent's technical know-how and Progent's sensitivity to the requirements of small and midsize businesses make Progent the perfect resource for creating and maintaining a cost-effective, fault-tolerant network.
Other Credentials Earned by Progent's Cybersecurity and Information Assurance Consultants
In addition to offering the expertise of information assurance professionals with CRISC certification, Progent can also provide your business with access to CISM-certified security management consultants, CISSP-certified cybersecurity experts, CISSP-ISSAP certified cybersecurity architecture consultants, CISA-certified cybersecurity audit professionals, and GIAC-certified information assurance specialists.
Contact Progent for help from a CRISC-certified Risk Management Consultant
To learn how to receive support from a CRISC-certified risk management expert, phone Progent at 800-993-9400 or visit Contact Progent.