The CRISC Certification for Controlling Information System Risk
CRISC Risk Mitigation ConsultingThe Certified in Risk and Information Systems Control (CRISC) program was established by ISACA in 2010 to verify an IT professional's ability to design, deploy, and maintain information system controls to manage network risk. Progent can provide the services of a CRISC-certified consultant to help you identify, quantify, mitigate, and monitor risks throughout your information network, including both technology and business processes.

Progent can also help you create and implement a risk management strategy based on leading practices promoted by CRISC and geared to align with your company's risk tolerance, business objectives, and IT budget. Areas covered by Progent's risk management services include business continuity planning and disaster recovery preparedness. Progent's risk management services are complementary to the services available from Progent's CISA-certified cybersecurity audit consultants and Progent's CISM-certified cybersecurity management experts.

Progent's Support for CRISC Focus Areas
The CRISC (pronounced "see-risk") certification program verifies a candidate's hands-on work experience and exhaustively tests skills in specific areas of risk management:

  • Risk identification
  • Risk assessment
  • Risk response and mitigation
  • Risk and control monitoring and reporting
Progent offers a comprehensive selection of consulting services for each of the risk management domains defined by CRISC.

Risk Identification
This area of risk management covers gathering the information needed to create a risk management strategy that is relevant to your business. Consulting services offered by Progent in this area include:

  • Collect information and review documentation to make sure you identify and evaluate significant risk scenarios.
  • Identify legal, regulatory, and contractual requirements and organizational policies and standards related to your information system to determine their potential impact on your business goals.
  • Identify potential threats and vulnerabilities for your business processes, associated data, and supporting capabilities to assist in evaluating your enterprise risk.
  • Create and maintain a risk register to make sure all identified risk factors are considered.
  • Compile risk scenarios to estimate the likelihood and impact of significant events that could disrupt your business.
  • Develop a risk awareness program and conduct training to make sure your stakeholders understand information system risk so they can contribute to your risk management process.
  • Match identified risk scenarios to your associated business processes to help determine risk ownership.
  • Validate risk appetite and risk tolerance with your senior leadership and key stakeholders to make sure they are in agreement.
Risk Assessment
This area of risk management involves the analysis and evaluation of IT risk in order to drive strategic risk management decisions that provide optimal support for business objectives. Consulting services offered by Progent in this area include:
  • Frame the analysis of identified risk scenarios in the context of your company's structure, policies, and control mechanisms in order to assess each scenario's likelihood and consequences.
  • Review existing risk controls and assess their ability to reduce information system risk.
  • Study the findings of risk and control analysis to identify possible disconnects between the actual and intended readiness of your risk management environment.
  • Make sure that risk ownership is properly assigned to clarify the chain of accountability.
  • Review risk assessment findings to appropriate stakeholders to inform risk management strategy.
  • Incorporate the risk assessment findings in the risk register.
Risk Response and Mitigation
This area of risk management involves developing and implementing risk responses to ensure that risk factors and events are handled effectively and in line with your business goals and IT budget. Consulting services offered by Progent in this area include:
  • Identify and evaluate risk response options and provide your management with information needed to make sensible decisions about responding to risk.
  • Review risk responses with your relevant stakeholders to validate efficiency, effectiveness, and economy.
  • Apply risk criteria to help you develop the risk profile for approval by your management.
  • Help you develop risk response action plans to address risk factors identified in your organizational risk profile.
  • Help you develop business cases supporting your investment plan to make sure risk responses are aligned with your business goals.
Risk and Control Monitoring and Reporting
This area of risk management addresses monitoring risk and communicating information to your relevant stakeholders to ensure the continued effectiveness of your company's risk management strategy. Support services available from Progent in this area include:
  • Collect and validate data that measure key risk indicators (KRIs) to monitor and communicate their status to associated stakeholders.
  • Monitor and communicate key risk indicators (KRIs) and management activities to assist your relevant stakeholders in their decision-making process.
  • Facilitate independent risk assessments and risk management process reviews to ensure they are performed efficiently and effectively.
  • Identify and report on risk, including compliance, to initiate corrective action and meet business and regulatory requirements.
  • Interview process owners and review process design documentation to gain an understanding of your business process objectives.
  • Design information systems controls in consultation with process owners to make sure they meet your business goals.
  • Help identify the people, infrastructure, information, and other resources needed to implement and manage IS controls at an optimal level.
  • Implement information systems controls to mitigate risk.
  • Help define metrics and key performance indicators (KPIs) so you can measure your information systems control performance in meeting business goals.
  • Provide documentation and training to make sure your IS controls are performed effectively.
  • Assess and recommend tools and techniques to automate your information system control verification processes.
  • Make sure all your controls are assigned to owners who take responsibility for them.
  • Establish control criteria to allow you to perform control life cycle management.
Other Non-stop Technologies Supported by Progent's Consultants
Progent's Microsoft and Cisco-certified consultants can assist your company to create a sensible, zero-downtime system that resolves key issues covering a broad range of infrastructure solutions and processes such as:

Disaster Recovery Planning
Progent's business continuity planning engineers can help you design a business continuity strategy that will allow you to resume network functionality in case of an IT network catastrophe. Progent can assist you to create a complete disaster recovery strategy that includes periodic disaster recovery evaluations and drills. Progent's Microsoft and Cisco-authorized consultants can also help you create an affordable, non-stop network architecture that takes into account reliability issues involving a wide array of infrastructure technologies and procedures. For details, visit Business Continuity Consulting.

Managed Cloud Backup: ProSight Data Protection Services
ProSight Data Protection Services from Progent offer small and mid-sized organizations an affordable end-to-end solution for secure backup/disaster recovery. For a low monthly cost, ProSight Data Protection Services automates and monitors your backup processes and allows rapid recovery of vital data, apps and VMs that have become unavailable or damaged as a result of hardware failures, software bugs, disasters, human mistakes, or malicious attacks like ransomware. ProSight DPS can help you back up, recover and restore files, folders, applications, system images, plus Microsoft Hyper-V and VMware virtual machine images. Critical data can be backed up on the cloud, to an on-promises storage device, or to both. Progent's BDR specialists can deliver world-class support to configure ProSight Data Protection Services to be compliant with regulatory standards like HIPPA, FINRA, and PCI and, when necessary, can assist you to recover your critical information. Read more about ProSight Data Protection Services Managed Backup and Recovery.

Microsoft Server 2016 Disaster Recovery and Business Continuity
Progent's Windows Server 2016 disaster recovery consultants can help your organization to design a DR system based on Microsoft's most advanced Failover Clustering tools such as Cluster Operating System Rolling Upgrade for non-disruptive migration to Windows Server 2016, Storage Replica for zero-data-loss Recovery Point Objective (RPO), Storage Spaces Direct for high-performance storage clusters using low-cost equipment, Virtual Machine Load Balancing for enhancing the performance and fault-tolerance of Failover Clusters while minimizing TCO and operational expenses, and Cloud Witness for fast, affordable creation of a failover cluster quorum arbitration point. For details, visit Windows Server 2016 Disaster Recovery and Business Continuity Consulting.

Microsoft Windows Server 2012 Failover Clusters
Windows Server 2008 R2 introduced enterprise-class availability and system recovery to Microsoft's clustering platform. Microsoft Windows Server 2012 R2 adds to this foundation and delivers important improvements that offer more scalability, better storage uptime for server applications, easier administration, quicker automatic failover, and more options for designing clusters. To learn more, visit Windows Server 2012 Clustering Integration.

VMware Site Recovery Manager (SRM) Disaster Recovery Solutions
VMware's Site Recovery Manager (SRM) is an extension to VMware vCenter that allows you to orchestrate, automate and test a repeatable process for recovering services rapidly after an outage. Site Recovery Manager supports centrally managed and automated recovery, application mobility, and non-intrusive site relocation, failback and site re-protect. Site Recovery Manager also supports transparent testing for disaster recovery, upgrades and patches and can generate reports to confirm complete service restoration, validate SLAs and demonstrate disaster recovery compliance. Progent offers the skills of a VCDX certified VMware Site Recovery Manager consultant to help you to design, deploy, test and manage a disaster recovery system based on VMware Site Recovery Manager.

NetApp MetroCluster Disaster Recovery Software
NetApp MetroCluster is a disaster recovery software suite that combines array-based storage clustering along with synchronous replication to deliver fast, zero data loss disaster recovery between datacenters that are as far as 185 miles apart. Progent can provide access to a certified NetApp MetroCluster consultant who can help you to design, configure, manage, upgrade, test and repair a disaster recovery solution based on NetApp MetroCluster. Progent can assist you to select a topology for your MetroCluster environment that aligns with your technical requirements and IT budget. Progent can ensure you adhere to best practices for configuring your MetroCluster solution by providing help with tasks like assigning shelf IDs, arranging aggregate and plexes layout, setting up NetApp FlexVol volumes, setting up Data ONTAP configuration replication service, provisioning Cisco and Brocade switches, implementing a tiebreaker, designing a TCP/IP configuration replication network, and verifying your DR system to prove compliance with information assurance standards and regulatory requirements.

Fault Tolerant Load Balancing
Progent offers high availability load balancing support covering system load balancing, load balanced programs, network backbone routing, and content delivery products including Cisco Content Engine. High availability load balancing technologies for which Progent can provide consulting services include Microsoft Windows Server 2003 and 2008 Network Load Balancing Manager, Citrix Metaframe and Access Gateway, Cisco Content Services Switch, Cisco Distributed Director and LocalDirector 400 series, and F5 Networks 3-DNS. To learn more, go to High Availability Load Balancing.

High-Availability Data Centers
Progent's Data Center engineers can help you identify fault-tolerant data centers that match the specific requirements of your company. Fault tolerant co-location sites are particularly attractive to small and mid-size organizations due to of their affordability and convenience in comparison to pursuing a do-it-yourself strategy. Trying to design an in-house data center that offers even a basic degree of fault tolerance is too costly for most small businesses. Progent can help you reap all the advantages of 24x7 colo sites by offering a complete range of consulting and support services. For more information, visit Fault Tolerant Data Centers Expertise.

High-Availability Interoffice Networking
Progentís multi-site connectivity consultants can help businesses achieve non-stop multi-site connections by means of fully redundant networks featuring transparent failover. Progentís Cisco-certified CCIE engineers can plan and deploy high-availability Inter-office networks supported by non-stop EIGRP network routers or non-stop OSPF deployment of Cisco routers. Progent can show you how multi-path connectivity and transparent fail-over can provide affordable 24x7 interoffice networking. To learn more, see Failsafe Inter-office Connectivity.

High Availability Internet Connections
Progent's Cisco-authorized network experts can show you how to create an affordable, high availability Internet connection solution that can deliver 24x7 Internet connectivity via a wide range of high availability Internet access technologies including fault tolerant BGP, automatic fail-over, and redundant ISPs. Progent offers CCIE professionals to help you utilize the latest techniques for high availability Internet access to build an economical, fully redundant Internet interface with automatic failover and other features to create zero-downtime Internet access. For details, visit Fault Tolerant Internet Access Architecture.

Backup and Restore Solutions Consulting
Progent can provide affordable online support from IT engineers with expertise in a wide array of utilities and services that deliver solutions for protecting Microsoft Windows, Apple Mac, and Linux physical and virtual servers and workstations as well as notebooks and smartphones. Progent can provide consulting support for all major backup platforms such as Acronis Backup and Recovery, Backup Exec, BackupAssist Software, CrashPlan PRO, Double-Take Software, Mozy, Retrospect, Time Machine, VMware vSphere Data Protection (VDP), and Oracle Solaris FLARs. Progent can help your company to implement, enhance, or maintain backup/restore systems for a variety of architectures such as local, remote, cloud, or hybrid. For details, visit Backup and Recovery Solutions Consulting.

System Center Data Protection Manager (SCDPM) Data Recovery Consulting
Progent's expert Microsoft System Center Data Protection Manager engineers can help you to create an effective business continuity plan, design an affordable fault-tolerante network infrastructure, configure a Microsoft System Center Data Protection Manager-based recovery solution, thoroughly test your DPM system, train your IT personnel or local service providers how to manage Microsoft System Center Data Protection Manager, or provide extensive information technology outsourcing services including off-site housing of Microsoft System Center Data Protection Manager servers in Progent's data center facility. To learn more, go to System Center Data Protection Manager (SCDPM) Consulting Services.

Barracuda Backup Multi-site and Cloud Backup and Disaster Recovery
Barracuda Backup is an affordable, subscription backup/restore service for small and medium-size businesses. A Barracuda Backup deployment can include a custom-designed physical appliance built by Barracuda or a software-based appliance with comparable functionality but which uses your existing storage hardware. Barracuda Backup protects critical company data generated on-premises, at one or more remote locations, or in the cloud. For disaster recovery, you can replicate data to the Barracuda Cloud, to Amazon AWS, or to any location with a physical or virtual Barracuda appliance. Progent is a Barracuda partner and Progent's Barracuda Backup consulting experts offer a wide range of consulting services to assist your business to plan, configure, operate and repair a BDR system built on Barracuda technology. For additional information, visit Barracuda Backup and disaster recovery consulting.

Altaro VM Backup Software for Data Protection and Disaster Recovery
Altaro VM Backup software provides small businesses a reliable and budget-friendly platform for backing up and restoring Hyper-V and VMware-powered virtual machines. Altaro VM Backup can be used for on-premises, offsite, multi-site, and cloud-hosted environments and also supports low-cost backup to Microsoft Azure storage. Top capabilities include state-of-the-art Augmented Inline Deduplication to cut backup storage requirements, Continuous Data Protection (CDP) with backup intervals as little as five minutes for reducing your Recovery Point Objective (RPO), military-grade encryption, item-level restore capability for individual files and emails, extensive support for Windows Server Cluster Shared Volumes (CSV) and VMware vCenter for managing larger deployments, and support for Microsoft Volume Shadow Copy Service to back up live virtual machines with zero downtime. Progent is a certified Altaro partner and offers a broad array of consulting services to assist you to design, install, manage and troubleshoot a backup/restore system based on Altaro VM Backup. To read more, visit Altaro VM Backup Consulting.

Consulting for Double-Take Solutions for Backup and Recovery
Double-Take Software publishes a selection of products intended to deliver small and midsize companies a variety of affordable solutions for backing up and recovering vital applications including Microsoft Exchange Server, Microsoft SQL Server, RIM Blackberry, and Microsoft Office SharePoint. Progentís disaster recovery planning experts have in-depth experience integrating Double-Take technology into small business information systems to achieve an advanced level of fault tolerance and disaster recovery readiness at a budget-friendly price. For more information, see Consulting for Double-Take Solutions for Data Backup.

Why Pick Progent for Disaster Recovery/Business Continuity Planning Solutions?
Since Progent is a Microsoft Partner and offers professional application expertise for a wide range of business software programs, Progent can assist customers to arrive at comprehensive IT solutions that substantially enhance the business value of your IT network. As a Registered Partner with Cisco, Progent offers the support of premier engineers and specialists with expertise in designing, deploying and managing infrastructure environments based on Cisco products. The depth of Progent's IT know-how and Progent's sensitivity to the needs of small companies make Progent the perfect resource for creating and running a cost-effective, high-availability information system.

Other Credentials Earned by Progent's Cybersecurity and Information Assurance Consultants
In addition to offering the expertise of information assurance professionals with CRISC certification, Progent can also provide your business with access to CISM-certified security management consultants, CISSP-certified cybersecurity experts, CISSP-ISSAP certified cybersecurity architecture consultants, CISA-certified cybersecurity audit professionals, and GIAC-certified information assurance specialists.

Contact Progent for help from a CRISC-certified Risk Management Consultant
To learn how to receive support from a CRISC-certified risk management expert, phone Progent at 800-993-9400 or visit Contact Progent.

More topics of interest: