The CRISC Certification for Controlling Information System Risk
The Certified in Risk and Information Systems Control (CRISC) program was established by ISACA in 2010 to verify an IT professional's ability to design, deploy, and maintain information system controls to manage network risk. Progent can provide the services of a CRISC-certified consultant to help you identify, quantify, mitigate, and monitor risks throughout your information network, including both technology and business processes.
Progent can also help you create and implement a risk management strategy based on leading practices promoted by CRISC and geared to align with your company's risk tolerance, business objectives, and IT budget. Areas covered by Progent's risk management services include business continuity planning and disaster recovery preparedness. Progent's risk management services are complementary to the services available from Progent's CISA-certified cybersecurity audit consultants and Progent's CISM-certified cybersecurity management experts.
Progent's Support for CRISC Focus Areas
The CRISC (pronounced "see-risk") certification program verifies a candidate's hands-on work experience and exhaustively tests skills in specific areas of risk management:
Progent offers a comprehensive selection of consulting services for each of the risk management domains defined by CRISC.
- Risk identification
- Risk assessment
- Risk response and mitigation
- Risk and control monitoring and reporting
This area of risk management covers gathering the information needed to create a risk management strategy that is relevant to your business. Consulting services offered by Progent in this area include:
- Collect information and review documentation to make sure you identify and evaluate significant risk scenarios.
- Identify legal, regulatory, and contractual requirements and organizational policies and standards related to your information system to determine their potential impact on your business goals.
- Identify potential threats and vulnerabilities for your business processes, associated data, and supporting capabilities to assist in evaluating your enterprise risk.
- Create and maintain a risk register to make sure all identified risk factors are considered.
- Compile risk scenarios to estimate the likelihood and impact of significant events that could disrupt your business.
- Develop a risk awareness program and conduct training to make sure your stakeholders understand information system risk so they can contribute to your risk management process.
- Match identified risk scenarios to your associated business processes to help determine risk ownership.
- Validate risk appetite and risk tolerance with your senior leadership and key stakeholders to make sure they are in agreement.
This area of risk management involves the analysis and evaluation of IT risk in order to drive strategic risk management decisions that provide optimal support for business objectives. Consulting services offered by Progent in this area include:
Risk Response and Mitigation
- Frame the analysis of identified risk scenarios in the context of your company's structure, policies, and control mechanisms in order to assess each scenario's likelihood and consequences.
- Review existing risk controls and assess their ability to reduce information system risk.
- Study the findings of risk and control analysis to identify possible disconnects between the actual and intended readiness of your risk management environment.
- Make sure that risk ownership is properly assigned to clarify the chain of accountability.
- Review risk assessment findings to appropriate stakeholders to inform risk management strategy.
- Incorporate the risk assessment findings in the risk register.
This area of risk management involves developing and implementing risk responses to ensure that risk factors and events are handled effectively and in line with your business goals and IT budget. Consulting services offered by Progent in this area include:
Risk and Control Monitoring and Reporting
- Identify and evaluate risk response options and provide your management with information needed to make sensible decisions about responding to risk.
- Review risk responses with your relevant stakeholders to validate efficiency, effectiveness, and economy.
- Apply risk criteria to help you develop the risk profile for approval by your management.
- Help you develop risk response action plans to address risk factors identified in your organizational risk profile.
- Help you develop business cases supporting your investment plan to make sure risk responses are aligned with your business goals.
This area of risk management addresses monitoring risk and communicating information to your relevant stakeholders to ensure the continued effectiveness of your company's risk management strategy. Support services available from Progent in this area include:
Other Non-stop Technologies Supported by Progent's Consultants
- Collect and validate data that measure key risk indicators (KRIs) to monitor and communicate their status to associated stakeholders.
- Monitor and communicate key risk indicators (KRIs) and management activities to assist your relevant stakeholders in their decision-making process.
- Facilitate independent risk assessments and risk management process reviews to ensure they are performed efficiently and effectively.
- Identify and report on risk, including compliance, to initiate corrective action and meet business and regulatory requirements.
- Interview process owners and review process design documentation to gain an understanding of your business process objectives.
- Design information systems controls in consultation with process owners to make sure they meet your business goals.
- Help identify the people, infrastructure, information, and other resources needed to implement and manage IS controls at an optimal level.
- Implement information systems controls to mitigate risk.
- Help define metrics and key performance indicators (KPIs) so you can measure your information systems control performance in meeting business goals.
- Provide documentation and training to make sure your IS controls are performed effectively.
- Assess and recommend tools and techniques to automate your information system control verification processes.
- Make sure all your controls are assigned to owners who take responsibility for them.
- Establish control criteria to allow you to perform control life cycle management.
Progent's Microsoft and Cisco-certified engineers can assist your company to create a cost-effective, fault-tolerant system that resolves critical challenges covering a wide array of networking technologies and processes including:
Disaster Recovery Planning
Progent's disaster recovery planning engineers can help you create a workplace recovery strategy in order to resume IT functionality in the event of an information network disaster. Progent can assist you to develop a complete disaster recovery strategy that includes scheduled disaster recovery assessments and drills. Progent's Microsoft and Cisco-authorized professionals can also help you build an affordable, high-availability system solution that addresses reliability issues covering a wide array of network technologies and processes. For details, go to Business Continuity Consulting and Support Services.
Managed Cloud Backup: ProSight Data Protection Services
ProSight Data Protection Services provide small and mid-sized businesses a low cost end-to-end service for reliable backup/disaster recovery (BDR). For a low monthly price, ProSight Data Protection Services automates and monitors your backup activities and allows fast recovery of vital files, apps and VMs that have become unavailable or corrupted due to hardware failures, software bugs, natural disasters, human mistakes, or malware attacks such as ransomware. ProSight DPS can help you protect, retrieve and restore files, folders, applications, system images, plus Microsoft Hyper-V and VMware images/. Critical data can be protected on the cloud, to a local storage device, or to both. Progent's backup and recovery specialists can deliver advanced expertise to configure ProSight DPS to be compliant with government and industry regulatory standards like HIPAA, FINRA, and PCI and, whenever necessary, can help you to recover your critical information. Find out more about ProSight Data Protection Services Managed Backup and Recovery.
Microsoft Windows Server 2016 Disaster Recovery
Progent's Windows Server 2016 disaster recovery experts can assist you to design a DR solution based on Microsoft's most advanced Failover Clustering technologies such as Cluster OS Rolling Upgrade for non-intrusive migration to Windows Server 2016, Storage Replica for zero-data-loss recovery, Storage Spaces Direct for high-performance network-attached storage using industry-standard equipment, Virtual Machine Load Balancing for improving the speed and fault-tolerance of Failover Clusters while minimizing capital investment and operational expenses, and Cloud Witness for easy, economical creation of a stretch cluster quorum arbitration point. For details, go to Windows Server 2016 Disaster Recovery Expertise.
Windows Server 2012 Failover Clustering
Windows Server 2008 R2 introduced world-class availability and recoverability to Microsoft's clustering platform. Microsoft Windows Server 2012 R2 builds on this technology and provides significant enhancements offering increased scalability, non-stop storage availability for server applications, streamlined management, quicker failover, and more flexibility for architecting clusters. For more information, see Windows Server 2012 R2 Failover Clustering Integration.
VMware Site Recovery Manager (SRM) Disaster Recovery Solutions
VMware's Site Recovery Manager (SRM) is a component of VMware vCenter that lets you define, automate and test a repeatable process for restoring applications and services rapidly after a breakdown. SRM supports centrally managed and automated disaster recovery, application mobility, plus non-disruptive site relocation, failback and site re-protect. Site Recovery Manager also allows transparent testing for disaster recovery, updates and fixes and can generate reports to confirm full service restoration, validate SLAs and demonstrate DR compliance. Progent can provide the support of a VCDX certified VMware Site Recovery Manager consulting expert to assist you to design, deploy, test and manage a disaster recovery solution based on VMware Site Recovery Manager.
NetApp MetroCluster High Availability and Disaster Recovery Software
NetApp MetroCluster is a disaster recovery software suite that uses array-based storage clustering with synchronous replication to deliver rapid, zero RPO disaster recovery (DR) between datacenters located as far as 300km away from one another. Progent can provide access to a certified NetApp MetroCluster consultant who can help you to design, configure, manage, upgrade, test and troubleshoot a disaster recovery system built around NetApp MetroCluster. Progent can assist you to select a topology for your MetroCluster environment that aligns with your technical needs and IT budget. Progent can ensure you adhere to leading practices for installing your MetroCluster solution by delivering guidance with procedures like assigning shelf IDs, determining aggregate layout, provisioning NetApp FlexVol volumes, setting up Data ONTAP configuration replication service, installing Cisco and Brocade switches, implementing a tiebreaker mechanism, setting up a TCP/IP configuration replication network between your storage clusters, and testing your MetroCluster disaster recovery system to show adherence with industry standards and regulatory requirements.
Fault Tolerant Load Balancing
Progent provides fault tolerant load balancing consulting that addresses network load balancing, load balanced applications, network infrastructure routing, and content dispatching products including Cisco Content Engine. High availability load balancing products for which Progent can provide consulting services include Microsoft Windows 2003 and 2008 Server Network Load Balancing Manager, Citrix Access Suite and Access Gateway, Cisco CSS, Cisco Content Distribution Manager and LocalDirector 400 series, and F5 Networks 3-DNS. For details, see Fault Tolerant Load Balancing.
High-Availability Data Centers
Progent's Data Center professionals can help you select high availability data centers that meet the specific requirements of your business. High availability colocation sites are particularly attractive to small and mid-size businesses because of their low cost and convenience in comparison to pursuing a do-it-yourself approach. Trying to create an on-site data center that offers even a basic degree of fault tolerance is too expensive for most small companies. Progent is ready to show you how to reap all the advantages of high-availability colocation facilities by providing a complete range of consulting and maintenance services. To find out more, see High-Availability Data Centers Expertise.
High-Availability Branch Office Networking
Progentís multi-site network infrastructure professionals can help companies achieve fault tolerant multi-site connectivity via redundant system architectures featuring transparent failover. Progentís Cisco-certified CCIE engineers can plan and deploy fault-tolerant Inter-office connections based on non-stop EIGRP routers or fault tolerant OSPF deployment of Cisco routers. Progent can show you how redundant connections and transparent fail-over can provide economical 24x7 interoffice networking. To learn more, visit High-Availability Interoffice Networking.
Fault Tolerant Internet Connections
Progent's Cisco-certified network professionals can help you create an economical, high availability Internet configuration solution that can achieve non-stop Internet connectivity through a broad range of high availability Internet network technologies including high availability BGP, transparent fail-over, and multiple Internet Service Providers. Progent offers Cisco Certified Internetwork Expert engineers to show you how to apply the most advanced techniques for fault tolerant Internet connections to implement an economical, completely redundant Internet interface with automatic failover and other capabilities to create non-stop Internet connections. To find out more, visit 24x7 Internet Connectivity Architecture.
Backup and Recovery Technology Consulting Experts
Progent can provide economical remote access to IT engineers skilled in a broad range of utilities and services that deliver solutions for backing up Windows, Apple Mac, and Linux servers and workstations plus laptops and handhelds. Progent can provide help for all major backup platforms such as Acronis, Symantec Backup Exec, BackupAssist, CrashPlan, Double-Take, Mozy, Retrospect for Macintosh, Time Machine, vSphere Data Protection, and Solaris FLARs. Progent's consultants can assist you to deploy, upgrade, or troubleshoot backup/restore solutions for a variety of topologies including local, remote, cloud, or a mix. To read more, go to Backup and Recovery Solutions Consulting and Support Services.
Microsoft System Center Data Protection Manager (SCDPM) Backup and Restore Consultants
Progent's certified System Center Data Protection Manager (SCDPM) support professionals can help your company to develop an effective workplace recovery plan, design a cost-effective high-availability IT infrastructure, deploy a System Center Data Protection Manager-based backup and restore solution, comprehensively validate your DPM system, educate your IT personnel or local service providers how to maintain SCDPM, or provide extensive IT support outsourcing including off-site housing of Microsoft SCDPM machines in Progent's data center facility. For more information, go to System Center Data Protection Manager (SCDPM) Consulting.
Barracuda Backup Local, Offsite and Cloud Data Backup and Disaster Recovery
Barracuda Backup is an affordable, subscription backup and disaster recovery service for small and medium-size businesses. A Barracuda Backup solution can incorporate a purpose-built hardware storage device manufactured by Barracuda or a software-based appliance with similar functionality but which utilizes your existing storage hardware. Barracuda Backup safeguards vital company data produced on-premises, at one or more remote locations, or in the cloud. For disaster preparedness, you can replicate data to the Barracuda Cloud, to Amazon Web Services (AWS), or to any location with a Barracuda Backup appliance. Progent is a Barracuda partner and Progent's Barracuda Backup consulting experts can provide a wide range of consulting support services to help your business to design, integrate, operate and repair a BDR system based on Barracuda Backup. For details, visit Barracuda Backup and disaster recovery consultants.
Altaro VM Backup Software for Data Protection and Disaster Recovery
Altaro VM Backup software offers small and mid-size organizations a dependable and affordable platform for backing up and restoring Hyper-V and VMware-based VMs. Altaro VM Backup can be used for on-premises, offsite, distributed, and cloud-hosted environments and also enables cost-effective backup to Azure Block Blob storage. Headline capabilities include state-of-the-art inline deduplication to cut backup storage requirements, Continuous Data Protection with backup intervals as little as five minutes for reducing your Recovery Point Objective (RPO), military-grade encryption, item-level restore options for specific files and emails, extensive support for Windows Server CSV and vCenter for managing larger deployments, and support for Volume Shadow Copy Service (VSS) to back up live virtual machines without downtime. Progent is an Altaro partner and offers a broad range of services to assist you to plan, deploy, manage and troubleshoot a backup and disaster recovery solution powered by Altaro VM Backup. To find out more, see Altaro VM Backup Consulting.
Consulting Services Double-Take Software for Data Backup/Restore
Double-Take offers a family of products designed to deliver small and midsize businesses a range of affordable alternatives for replicating and recovering vital applications including Microsoft Exchange, Microsoft SQL Server, RIM Blackberry, and Microsoft SharePoint. Progentís business continuity planning experts have extensive backgrounds integrating Double-Take Software products into small company information networks to create a high state of availability and disaster recovery readiness at a budget-friendly cost. For details, go to Consulting for Double-Take Solutions for Backup.
Why Choose Progent for Disaster Recovery/Business Continuity Planning Solutions?
Since Progent is a Microsoft Certified Partner and provides specialized application support for a broad variety of small business software programs, Progent can assist clients to find complete IT solutions that optimize the productivity of your network. As a Registered Partner with Cisco, Progent can provide the expertise of certified engineers and specialists with experience in designing, configuring and managing infrastructure solutions built on Cisco products. The breadth of Progent's IT experience and Progent's sensitivity to the requirements of small businesses make Progent a great partner for building and running a cost-effective, fault-tolerant information system.
Other Credentials Earned by Progent's Cybersecurity and Information Assurance Consultants
In addition to offering the expertise of information assurance professionals with CRISC certification, Progent can also provide your business with access to CISM-certified security management consultants, CISSP-certified cybersecurity experts, CISSP-ISSAP certified cybersecurity architecture consultants, CISA-certified cybersecurity audit professionals, and GIAC-certified information assurance specialists.
Contact Progent for help from a CRISC-certified Risk Management Consultant
To learn how to receive support from a CRISC-certified risk management expert, phone Progent at 800-993-9400 or visit Contact Progent.