The CRISC Certification for Controlling Information System Risk
CRISC Risk Mitigation ConsultingThe Certified in Risk and Information Systems Control (CRISC) program was established by ISACA in 2010 to verify an IT professional's ability to design, deploy, and maintain information system controls to manage network risk. Progent can provide the services of a CRISC-certified consultant to help you identify, quantify, mitigate, and monitor risks throughout your information network, including both technology and business processes.

Progent can also help you create and implement a risk management strategy based on leading practices promoted by CRISC and geared to align with your company's risk tolerance, business objectives, and IT budget. Areas covered by Progent's risk management services include business continuity planning and disaster recovery preparedness. Progent's risk management services are complementary to the services available from Progent's CISA-certified cybersecurity audit consultants and Progent's CISM-certified cybersecurity management experts.

Progent's Support for CRISC Focus Areas
The CRISC (pronounced "see-risk") certification program verifies a candidate's hands-on work experience and exhaustively tests skills in specific areas of risk management:

  • Risk identification
  • Risk assessment
  • Risk response and mitigation
  • Risk and control monitoring and reporting
Progent offers a comprehensive selection of consulting services for each of the risk management domains defined by CRISC.

Risk Identification
This area of risk management covers gathering the information needed to create a risk management strategy that is relevant to your business. Consulting services offered by Progent in this area include:

  • Collect information and review documentation to make sure you identify and evaluate significant risk scenarios.
  • Identify legal, regulatory, and contractual requirements and organizational policies and standards related to your information system to determine their potential impact on your business goals.
  • Identify potential threats and vulnerabilities for your business processes, associated data, and supporting capabilities to assist in evaluating your enterprise risk.
  • Create and maintain a risk register to make sure all identified risk factors are considered.
  • Compile risk scenarios to estimate the likelihood and impact of significant events that could disrupt your business.
  • Develop a risk awareness program and conduct training to make sure your stakeholders understand information system risk so they can contribute to your risk management process.
  • Match identified risk scenarios to your associated business processes to help determine risk ownership.
  • Validate risk appetite and risk tolerance with your senior leadership and key stakeholders to make sure they are in agreement.
Risk Assessment
This area of risk management involves the analysis and evaluation of IT risk in order to drive strategic risk management decisions that provide optimal support for business objectives. Consulting services offered by Progent in this area include:
  • Frame the analysis of identified risk scenarios in the context of your company's structure, policies, and control mechanisms in order to assess each scenario's likelihood and consequences.
  • Review existing risk controls and assess their ability to reduce information system risk.
  • Study the findings of risk and control analysis to identify possible disconnects between the actual and intended readiness of your risk management environment.
  • Make sure that risk ownership is properly assigned to clarify the chain of accountability.
  • Review risk assessment findings to appropriate stakeholders to inform risk management strategy.
  • Incorporate the risk assessment findings in the risk register.
Risk Response and Mitigation
This area of risk management involves developing and implementing risk responses to ensure that risk factors and events are handled effectively and in line with your business goals and IT budget. Consulting services offered by Progent in this area include:
  • Identify and evaluate risk response options and provide your management with information needed to make sensible decisions about responding to risk.
  • Review risk responses with your relevant stakeholders to validate efficiency, effectiveness, and economy.
  • Apply risk criteria to help you develop the risk profile for approval by your management.
  • Help you develop risk response action plans to address risk factors identified in your organizational risk profile.
  • Help you develop business cases supporting your investment plan to make sure risk responses are aligned with your business goals.
Risk and Control Monitoring and Reporting
This area of risk management addresses monitoring risk and communicating information to your relevant stakeholders to ensure the continued effectiveness of your company's risk management strategy. Support services available from Progent in this area include:
  • Collect and validate data that measure key risk indicators (KRIs) to monitor and communicate their status to associated stakeholders.
  • Monitor and communicate key risk indicators (KRIs) and management activities to assist your relevant stakeholders in their decision-making process.
  • Facilitate independent risk assessments and risk management process reviews to ensure they are performed efficiently and effectively.
  • Identify and report on risk, including compliance, to initiate corrective action and meet business and regulatory requirements.
  • Interview process owners and review process design documentation to gain an understanding of your business process objectives.
  • Design information systems controls in consultation with process owners to make sure they meet your business goals.
  • Help identify the people, infrastructure, information, and other resources needed to implement and manage IS controls at an optimal level.
  • Implement information systems controls to mitigate risk.
  • Help define metrics and key performance indicators (KPIs) so you can measure your information systems control performance in meeting business goals.
  • Provide documentation and training to make sure your IS controls are performed effectively.
  • Assess and recommend tools and techniques to automate your information system control verification processes.
  • Make sure all your controls are assigned to owners who take responsibility for them.
  • Establish control criteria to allow you to perform control life cycle management.
Additional Zero-Downtime Solutions Supported by Progent
Progent's Microsoft and Cisco support professionals can help your company to implement a sensible, high-availability system that resolves major issues covering a wide range of networking technologies and processes including:

Disaster Recovery Planning
Progent's disaster recovery consultants can help you create a disaster recovery plan so you can resume IT operations in the event of an IT network disaster. Progent can assist you to define a complete disaster recovery plan that includes periodic disaster recovery assessments and testing. Progent's Microsoft and Cisco-authorized engineers can also show you how to build an affordable, non-stop network architecture that takes into account availability issues covering a wide array of network technologies and procedures. For details, go to Workplace Recovery Consulting Services.

Fully Managed Cloud Backup: ProSight Data Protection Services
ProSight Data Protection Services provide small and medium-sized businesses a low cost end-to-end solution for reliable backup/disaster recovery (BDR). Available at a low monthly price, ProSight DPS automates and monitors your backup activities and allows rapid recovery of critical files, apps and VMs that have become lost or corrupted due to component failures, software bugs, natural disasters, human mistakes, or malware attacks like ransomware. ProSight DPS can help you back up, retrieve and restore files, folders, apps, system images, as well as Hyper-V and VMware images/. Critical data can be protected on the cloud, to a local device, or to both. Progent's cloud backup specialists can deliver world-class support to configure ProSight Data Protection Services to to comply with government and industry regulatory standards such as HIPPA, FIRPA, and PCI and, whenever needed, can assist you to restore your critical data. Find out more about ProSight DPS Managed Backup and Recovery.

Microsoft Windows Server 2016 Disaster Recovery
Progent's Windows Server 2016 disaster recovery consultants can assist you to design a disaster recovery solution built around Microsoft's cloud-tested Failover Clustering technologies including Cluster OS Rolling Upgrade for non-disruptive migration to Windows Server 2016, Storage Replica for zero-data-loss Recovery Point Objective (RPO), Storage Spaces Direct for high-performance storage clusters using low-cost hardware, Virtual Machine Load Balancing for improving the performance and fault-tolerance of Failover Clusters while reducing TCO and operational expenses, and Cloud Witness for easy, economical creation of a stretch cluster quorum arbitration point. To read more, visit Windows Server 2016 Disaster Recovery and Business Continuity Expertise.

Microsoft Windows Server 2012 Failover Clustering
Microsoft Windows Server 2008 R2 brought enterprise-class fault tolerance and system recovery to Microsoft's failover clustering solution. Microsoft Windows Server 2012 R2 adds to this technology and delivers significant enhancements offering more extensibility, better storage availability for server applications, streamlined administration, quicker failover, and more flexibility for designing failover clusters. For more information, go to Windows Server 2012 Clustering Integration.

VMware Site Recovery Manager (SRM) Disaster Recovery Solutions
VMware's Site Recovery Manager is a component of VMware vCenter that allows you to orchestrate, automate and test a consistent runbook for restoring applications and services rapidly following an outage. SRM provides centrally controlled and automated disaster recovery, application mobility, and non-disruptive site migration, failback and re-protect. Site Recovery Manager also enables non-disruptive testing for disaster recovery, updates and fixes and can produce audit reports to confirm complete service recovery, validate SLAs and demonstrate DR compliance. Progent offers the skills of a VCDX certified VMware SRM consulting expert to help your organization to plan, deploy, test and administer a DR solution powered by VMware SRM.

NetApp MetroCluster Disaster Recovery Technology
NetApp MetroCluster is a high-availability and disaster recovery software suite that combines failover storage clustering along with synchronous replication to provide rapid, zero data loss disaster recovery between datacenters that are as far as 300km apart. Progent offers online or on-premises access to a certified NetApp MetroCluster consultant who can help your business to design, configure, administer, update, test and repair a disaster recovery solution built around NetApp MetroCluster. Progent can help you to select a topology for your MetroCluster environment that aligns with your technical needs and budget. Progent can ensure you adhere to best practices for installing your MetroCluster environment by providing guidance with procedures such as assigning shelf IDs, arranging plexes layout, setting up FlexVol volumes, setting up Data ONTAP configuration replication service, provisioning Cisco and Brocade switches, implementing a tiebreaker mechanism, designing a TCP/IP configuration replication network between your peered clusters, and verifying your MetroCluster DR system to show adherence with information assurance standards and regulatory mandates.

High Availability Load Balancing
Progent offers high availability load balancing support covering system load balancing, load balanced applications, LAN/WAN infrastructure routing, and content delivery technology including Cisco Content Engine. Fault tolerant load balancing products for which Progent offers consulting services include Windows 2003 and 2008 Server Network Load Balancing Manager, Citrix Access Suite and Access Gateway, Cisco Content Services Switch, Cisco Content Engine and ACNS, and F5 Networks 3-DNS. For more information, visit Fault Tolerant Load Balancing.

High-Availability Data Centers
Progent's Data Center professionals can help you identify fault-tolerant data centers that meet the specific requirements of your business. Fault tolerant co-location sites are particularly attractive to small and mid-size companies because of their low cost and simplified logistics compared to taking a do-it-yourself strategy. Trying to design an on-site data center with even a basic level of fault tolerance is financially prohibitive for most small organizations. Progent can show you how to reap all the advantages of high-availability Internet data centers by offering a full array of engineering and support services. To read more, go to Fault Tolerant Data Centers Consulting.

24x7 Branch Office Networking
Progentís inter-site connectivity consultants can help companies achieve zero-downtime inter-site connectivity via fully redundant system architectures with automatic failover. Progentís Cisco-certified CCIE engineers can plan and implement ultra-reliable Inter-office connections based on zero-downtime EIGRP network routers or fault tolerant OSPF configurations of Cisco routers. Progent can demonstrate how redundant connectivity and transparent fail-over can provide affordable non-stop interoffice networking. For details, see Non-stop Inter-office Networking.

24x7 Internet Access
Progent's Cisco-authorized IT engineers can help you create an economical, high availability Internet connection solution that can deliver non-stop Internet access via a wide range of high availability Internet network technologies including high availability BGP, automatic fail-over, and multiple Internet Service Providers. Progent offers CCIE professionals to show you how to apply the latest techniques for fault tolerant Internet access to create a cost-effective, completely redundant Internet network with automatic failover and other capabilities to deliver fault tolerant Internet connections. To find out more, visit Fault Tolerant Internet Access Solutions.

Backup and Recovery Solutions Consulting
Progent can provide economical remote access to IT engineers with expertise in a wide range of products and services that deliver solutions for backing up Windows, Mac, and Linux/UNIX servers and desktops plus laptops and smartphones. Progent can provide expertise for all major data protection platforms such as Acronis Backup and Recovery, Symantec Backup Exec, BackupAssist Software, HP Data Protector, Double-Take Backup, Mozy, Retrospect, Apple Time Machine, vSphere Data Protection, and Oracle Solaris FLARs. Progent can help your company to install, enhance, or maintain backup solutions for a range of topologies including on-premises, remote, cloud-based, or a mix. To read more, visit Backup and Recovery Solutions Expertise.

Microsoft System Center Data Protection Manager (SCDPM) Backup and Recovery Consulting Services
Progent's certified System Center Data Protection Manager consultants can help your company to develop a practical business continuity strategy, implement an affordable fault-tolerante IT infrastructure, install a Microsoft System Center Data Protection Manager-based recovery solution, comprehensively validate your system, educate your IT staff or local service providers how to manage System Center Data Protection Manager, or provide complete IT support outsourcing such as off-site hosting of Microsoft System Center Data Protection Manager machines in Progent's world-class data center. For details, visit System Center Data Protection Manager (SCDPM) Consulting and Support Services.

Barracuda Backup Local, Offsite and Cloud Backup and Disaster Recovery
Barracuda Backup is a low-cost, subscription-based backup/restore service for small and mid-size businesses. A Barracuda Backup deployment can incorporate a purpose-built physical storage device manufactured by Barracuda or a virtual appliance with comparable functionality but which utilizes your existing storage hardware. Barracuda Backup protects critical business data produced locally, at one or more remote locations, or in the cloud. For disaster protection, you can replicate data to the Barracuda Cloud, to Amazon Web Services (AWS), or to any location with a Barracuda Backup appliance. Progent is a certified Barracuda partner and Progent's Barracuda Backup consulting experts can provide a wide array of consulting support services to assist you to plan, integrate, operate and repair a BDR system built on Barracuda technology. For additional information, visit Barracuda Backup and disaster recovery consultants.

Altaro VM Backup Solutions for Backup and Disaster Recovery
Altaro VM Backup provides small businesses a reliable and budget-friendly solution for backing up and recovering Hyper-V and VMware-based virtual machines (VMs). Altaro VM Backup can be deployed in on-premises, offsite, distributed, and cloud-hosted architectures and also supports cost-effective cloud backup to Microsoft Azure Block Blob storage. Headline capabilities include state-of-the-art Augmented Inline Deduplication to cut backup storage needs, Continuous Data Protection (CDP) with backup intervals as low as five minutes for reducing your Recovery Point Objective, advanced encryption, item-level restore capability for specific files and emails, extensive support for Windows Server CSV and vCenter for handling large-scale deployments, and the ability to leverage Microsoft VSS technology to back up live virtual machines without downtime. Progent is an Altaro partner and offers a wide array of consulting services to assist you to plan, deploy, manage and troubleshoot a backup and disaster recovery system based on Altaro VM Backup software. For details, visit Altaro VM Backup Consulting.

Consulting Services Double-Take Software for Data Backup
Double-Take Software publishes a family of tools designed to provide small and midsize businesses a range of affordable alternatives for replicating and restoring business-critical applications including Microsoft Exchange, Microsoft SQL, RIM Blackberry, and SharePoint. Progentís disaster recovery planning consultants have extensive experience integrating Double-Take Software products into small company IT networks to achieve a high level of fault tolerance and disaster recovery capability at an affordable price. To read more, visit Consulting Services Double-Take Solutions for Data Backup.

Why Choose Progent for Disaster Recovery/Business Continuity Planning?
Since Progent is a Microsoft Partner and offers professional application consulting for a wide variety of business software programs, Progent can assist customers to find complete IT solutions that substantially enhance the business value of your IT network. As a Registered Partner for Cisco, Progent can provide the support of certified engineers and specialists with experience in designing, configuring and maintaining networking solutions based on Cisco technology. The broad scope of Progent's IT experience and Progent's sensitivity to the requirements of small and midsize companies make Progent the ideal resource for building and maintaining an affordable, high-availability information system.

Other Credentials Earned by Progent's Cybersecurity and Information Assurance Consultants
In addition to offering the expertise of information assurance professionals with CRISC certification, Progent can also provide your business with access to CISM-certified security management consultants, CISSP-certified cybersecurity experts, CISSP-ISSAP certified cybersecurity architecture consultants, CISA-certified cybersecurity audit professionals, and GIAC-certified information assurance specialists.

Contact Progent for help from a CRISC-certified Risk Management Consultant
To learn how to receive support from a CRISC-certified risk management expert, phone Progent at 800-993-9400 or visit Contact Progent.

More topics of interest: