The CRISC Certification for Controlling Information System Risk
The Certified in Risk and Information Systems Control (CRISC) program was established by ISACA in 2010 to verify an IT professional's ability to design, deploy, and maintain information system controls to manage network risk. Progent can provide the services of a CRISC-certified consultant to help you identify, quantify, mitigate, and monitor risks throughout your information network, including both technology and business processes.
Progent can also help you create and implement a risk management strategy based on leading practices promoted by CRISC and geared to align with your company's risk tolerance, business objectives, and IT budget. Areas covered by Progent's risk management services include business continuity planning and disaster recovery preparedness. Progent's risk management services are complementary to the services available from Progent's CISA-certified cybersecurity audit consultants and Progent's CISM-certified cybersecurity management experts.
Progent's Support for CRISC Focus Areas
The CRISC (pronounced "see-risk") certification program verifies a candidate's hands-on work experience and exhaustively tests skills in specific areas of risk management:
Progent offers a comprehensive selection of consulting services for each of the risk management domains defined by CRISC.
- Risk identification
- Risk assessment
- Risk response and mitigation
- Risk and control monitoring and reporting
This area of risk management covers gathering the information needed to create a risk management strategy that is relevant to your business. Consulting services offered by Progent in this area include:
- Collect information and review documentation to make sure you identify and evaluate significant risk scenarios.
- Identify legal, regulatory, and contractual requirements and organizational policies and standards related to your information system to determine their potential impact on your business goals.
- Identify potential threats and vulnerabilities for your business processes, associated data, and supporting capabilities to assist in evaluating your enterprise risk.
- Create and maintain a risk register to make sure all identified risk factors are considered.
- Compile risk scenarios to estimate the likelihood and impact of significant events that could disrupt your business.
- Develop a risk awareness program and conduct training to make sure your stakeholders understand information system risk so they can contribute to your risk management process.
- Match identified risk scenarios to your associated business processes to help determine risk ownership.
- Validate risk appetite and risk tolerance with your senior leadership and key stakeholders to make sure they are in agreement.
This area of risk management involves the analysis and evaluation of IT risk in order to drive strategic risk management decisions that provide optimal support for business objectives. Consulting services offered by Progent in this area include:
Risk Response and Mitigation
- Frame the analysis of identified risk scenarios in the context of your company's structure, policies, and control mechanisms in order to assess each scenario's likelihood and consequences.
- Review existing risk controls and assess their ability to reduce information system risk.
- Study the findings of risk and control analysis to identify possible disconnects between the actual and intended readiness of your risk management environment.
- Make sure that risk ownership is properly assigned to clarify the chain of accountability.
- Review risk assessment findings to appropriate stakeholders to inform risk management strategy.
- Incorporate the risk assessment findings in the risk register.
This area of risk management involves developing and implementing risk responses to ensure that risk factors and events are handled effectively and in line with your business goals and IT budget. Consulting services offered by Progent in this area include:
Risk and Control Monitoring and Reporting
- Identify and evaluate risk response options and provide your management with information needed to make sensible decisions about responding to risk.
- Review risk responses with your relevant stakeholders to validate efficiency, effectiveness, and economy.
- Apply risk criteria to help you develop the risk profile for approval by your management.
- Help you develop risk response action plans to address risk factors identified in your organizational risk profile.
- Help you develop business cases supporting your investment plan to make sure risk responses are aligned with your business goals.
This area of risk management addresses monitoring risk and communicating information to your relevant stakeholders to ensure the continued effectiveness of your company's risk management strategy. Support services available from Progent in this area include:
Other Zero-Downtime Solutions Offered by Progent
- Collect and validate data that measure key risk indicators (KRIs) to monitor and communicate their status to associated stakeholders.
- Monitor and communicate key risk indicators (KRIs) and management activities to assist your relevant stakeholders in their decision-making process.
- Facilitate independent risk assessments and risk management process reviews to ensure they are performed efficiently and effectively.
- Identify and report on risk, including compliance, to initiate corrective action and meet business and regulatory requirements.
- Interview process owners and review process design documentation to gain an understanding of your business process objectives.
- Design information systems controls in consultation with process owners to make sure they meet your business goals.
- Help identify the people, infrastructure, information, and other resources needed to implement and manage IS controls at an optimal level.
- Implement information systems controls to mitigate risk.
- Help define metrics and key performance indicators (KPIs) so you can measure your information systems control performance in meeting business goals.
- Provide documentation and training to make sure your IS controls are performed effectively.
- Assess and recommend tools and techniques to automate your information system control verification processes.
- Make sure all your controls are assigned to owners who take responsibility for them.
- Establish control criteria to allow you to perform control life cycle management.
Progent's Microsoft and Cisco consulting experts can help your business to implement an efficient, zero-downtime network that resolves critical problems encompassing a broad range of networking solutions and processes including:
Disaster Recovery Planning
Progent's business continuity planning engineers can help you create a disaster recovery strategy that will allow you to resume IT functionality in case of an IT network disaster. Progent can help you to create a complete disaster recovery plan that incorporates scheduled disaster recovery assessments and testing. Progent's Microsoft and Cisco-authorized consultants can also show you how to create an affordable, fault-tolerant network solution that takes into account reliability issues covering a wide array of infrastructure technologies and processes. For details, see Disaster Recovery Expertise.
Managed Cloud Backup: ProSight Data Protection Services
ProSight Data Protection Services from Progent provide small and medium-sized organizations an affordable and fully managed solution for reliable backup/disaster recovery (BDR). Available at a fixed monthly rate, ProSight DPS automates your backup processes and enables fast recovery of vital data, apps and virtual machines that have become unavailable or corrupted as a result of hardware failures, software glitches, natural disasters, human error, or malware attacks like ransomware. ProSight DPS can help you back up, recover and restore files, folders, applications, system images, as well as Microsoft Hyper-V and VMware images/. Important data can be backed up on the cloud, to a local storage device, or mirrored to both. Progent's cloud backup consultants can deliver advanced expertise to set up ProSight Data Protection Services to be compliant with government and industry regulatory requirements such as HIPAA, FINRA, PCI and Safe Harbor and, when needed, can assist you to recover your critical data. Learn more about ProSight DPS Managed Backup.
Windows Server 2016 Disaster Recovery
Progent's Windows Server 2016 disaster recovery/business continuity consultants can assist your organization to plan and deploy a DR system built around Microsoft's cloud-tested Failover Clustering technologies including Cluster OS Rolling Upgrade for non-intrusive migration to Windows Server 2016, Storage Replica for zero-data-loss recovery, Storage Spaces Direct for enterprise-class storage clusters using industry-standard hardware, VM Load Balancing for improving the speed and resilience of Failover Clusters while reducing TCO and operational expenses, and Cloud Witness for fast, affordable deployment of a stretch cluster quorum witness. For details, see Microsoft Windows Server 2016 Disaster Recovery and Business Continuity Help.
Windows Server 2012 Failover Clusters
Windows Server 2008 R2 brought world-class availability and recoverability to Microsoft's clustering platform. Windows Server 2012 R2 adds to this technology and delivers important improvements that offer more extensibility, better disk storage availability for server applications, simpler management, faster automatic failover, and more options for architecting failover clusters. For details, see Windows Server 2012 Clustering Integration.
VMware Site Recovery Manager (SRM) Disaster Recovery Solutions
VMware's Site Recovery Manager (SRM) is a component of VMware vCenter that allows you to specify, automate and verify a repeatable runbook for restoring applications and services quickly after a breakdown. Site Recovery Manager supports centrally managed and automated disaster recovery, application mobility, plus non-disruptive site migration, failback and re-protect. Site Recovery Manager also allows transparent testing for site recovery, upgrades and fixes and can generate reports to confirm complete service recovery, validate SLAs and demonstrate disaster recovery compliance. Progent offers the support of a VCDX certified VMware Site Recovery Manager consultant to assist you to plan, configure, test and administer a DR solution based on VMware Site Recovery Manager.
NetApp MetroCluster Disaster Recovery Platform
NetApp MetroCluster is a disaster recovery platform that combines failover storage clustering with continual replication to deliver rapid, zero RPO disaster recovery (DR) between sites that are up to 185 miles apart from each other. Progent offers online or on-premises access to a certified NetApp MetroCluster expert who can assist you to design, deploy, manage, upgrade, test and troubleshoot a disaster recovery solution built around NetApp MetroCluster. Progent can assist you to choose an architecture for your MetroCluster environment that meets your functional requirements and IT budget. Progent can ensure you follow leading practices for installing your MetroCluster environment by delivering guidance with procedures such as assigning disk pools, determining aggregate layout, setting up NetApp FlexVol volumes, setting up NetApp Snapshot, provisioning Cisco and Brocade switches, designing a tiebreaker mechanism, setting up a TCP/IP configuration replication network between your peered clusters, and verifying your disaster recovery system to show compliance with industry standards and regulatory mandates.
Fault Tolerant Load Balancing
Progent offers fault tolerant load balancing consulting that addresses network load balancing, load balanced applications, LAN/WAN infrastructure routing, and content delivery technology such as Cisco Content Engine. Fault tolerant load balancing products for which Progent offers consulting expertise include Windows 2003 and 2008 Server Network Load Balancing Manager, Citrix Metaframe and Access Gateway, Cisco CSS, Cisco Content Engine and Cisco CDN Software, and F5 Networks BIG-IP. For more information, visit Fault Tolerant Load Balancing.
Fault Tolerant Internet Data Centers
Progent's Data Center professionals can show you how to select fault-tolerant data centers that match the particular requirements of your company. Fault tolerant collocation sites are especially attractive to small and mid-size businesses because of their affordability and simplified logistics compared to taking a do-it-yourself strategy. Attempting to create an on-site data center with even a minimum degree of fault tolerance is too expensive for typical small businesses. Progent is ready to show you how to get all the advantages of 24x7 data centers by offering a full range of engineering and support services. To find out more, go to Fault Tolerant Internet Data Centers Solutions.
Non-stop Inter-office Connectivity
Progentís inter-site connectivity professionals can help companies create zero-downtime branch office connectivity via redundant system architectures featuring automatic failover. Progentís Cisco-premier CCIE engineers can plan and deploy high-availability Inter-office networks based on non-stop EIGRP network routers or non-stop OSPF deployment of Cisco routers. Progent can demonstrate how multi-path connections and automatic fail-over offers affordable 24x7 interoffice connectivity. To learn more, go to 24x7 Interoffice Networking.
24x7 Internet Connections
Progent's Cisco-authorized IT engineers can help you design an economical, fault tolerant Internet configuration solution that can achieve 24x7 Internet access through a broad range of high availability Internet access technologies including non-stop BGP, transparent fail-over, and multiple ISPs. Progent offers CCIE consultants to show you how to apply the most advanced techniques for high availability Internet connections to build an affordable, fully redundant Internet interface with automatic failover and other features to create zero-downtime Internet access. For details, visit High Availability Internet Connectivity Architecture.
Backup and Recovery Solutions Consulting Services
Progent can provide economical online support from engineers with expertise in a wide array of utilities and technologies that deliver solutions for protecting Microsoft Windows, Mac, and Linux/UNIX servers and desktops plus notebooks and smartphones. Progent can provide expertise for all major backup platforms including Acronis Backup and Recovery, Symantec Backup Exec, BackupAssist, CrashPlan, Double-Take, Mozy, Retrospect, Time Machine, VMware Data Recovery (VDR), and FLARs. Progent can assist your company to design, upgrade, or maintain backup systems for a variety of architectures such as local, edge to datacenter, cloud, or hybrid. To read more, visit Backup and Restore Technology Consulting.
Microsoft System Center Data Protection Manager (SCDPM) Data Recovery Consultants
Progent's certified System Center Data Protection Manager consultants can help your company to develop an effective workplace recovery strategy, implement an affordable high-availability network infrastructure, deploy a Microsoft SCDPM-based backup and recovery system, comprehensively validate your DPM system, train your administrative staff or regular service providers how to manage SCDPM, or provide extensive IT support outsourcing including remote hosting of SCDPM servers in Progent's world-class data center facility. For more information, go to System Center Data Protection Manager Consulting Services.
Barracuda Backup Local, Offsite and Cloud Backup and Disaster Recovery
Barracuda Backup is an affordable, subscription-based backup/restore platform for small and mid-size organizations. A Barracuda Backup solution can incorporate a purpose-built hardware appliance built by Barracuda or a software-based appliance with similar features but which uses your existing storage hardware. Barracuda Backup protects vital business data produced locally, at one or multiple remote locations, or in the cloud. For disaster protection, you can replicate data to the Barracuda Cloud, to Amazon AWS, or to any location with a physical or virtual Barracuda Backup appliance. Progent is a Barracuda partner and Progent's Barracuda Backup consulting experts can provide a broad array of consulting services to help you to design, configure, operate and repair a BDR solution built on Barracuda technology. For additional information, see Barracuda Backup and disaster recovery consultants.
Altaro VM Backup Solutions for Backup and Disaster Recovery
Altaro VM Backup software provides small and mid-size organizations a reliable and affordable solution for backing up and recovering Hyper-V and VMware-powered VMs. Altaro VM Backup can be used for on-premises, offsite, distributed, and cloud-hosted environments and also enables cost-effective cloud backup to Azure Block Blob storage. Headline capabilities include state-of-the-art inline deduplication to cut backup storage requirements, Continuous Data Protection with backup spacing as little as five minutes for reducing your Recovery Point Objective (RPO), advanced encryption, item-level restore capability for specific files and emails, extensive support for Windows CSV and vCenter for managing large-scale environments, and support for Microsoft Volume Shadow Copy Service to back up live VMs without downtime. Progent is an Altaro partner and can provide a wide array of consulting services to assist you to design, install, optimize and troubleshoot a backup and disaster recovery solution powered by Altaro VM Backup. For more information, see Altaro VM Backup Certified Consultants.
Consulting for Double-Take Solutions for Backup/Restore
Double-Take Software publishes a selection of products designed to deliver small and midsize companies a variety of affordable solutions for replicating and restoring business-critical applications such as Exchange Server, SQL, Blackberry, and Microsoft Office SharePoint. Progentís business continuity planning consultants have in-depth experience incorporating Double-Take Software technology into small company IT networks to create a high state of availability and disaster recovery capability at a budget-friendly cost. To find out more, see Consulting for Double-Take Solutions for Data Backup.
Why Choose Progent for Disaster Recovery/Business Continuity Planning?
Because Progent is a Microsoft Certified Partner and provides specialized application expertise for a broad variety of business applications, Progent can assist clients to arrive at complete IT solutions that maximize the business value of your network. As a Registered Partner for Cisco, Progent can provide the support of certified consultants and specialists with experience in architecting, deploying and troubleshooting infrastructure environments built on Cisco technology. The breadth of Progent's technical experience and Progent's sensitivity to the requirements of small companies make Progent the perfect resource for building and running a cost-effective, high-availability information system.
Other Credentials Earned by Progent's Cybersecurity and Information Assurance Consultants
In addition to offering the expertise of information assurance professionals with CRISC certification, Progent can also provide your business with access to CISM-certified security management consultants, CISSP-certified cybersecurity experts, CISSP-ISSAP certified cybersecurity architecture consultants, CISA-certified cybersecurity audit professionals, and GIAC-certified information assurance specialists.
Contact Progent for help from a CRISC-certified Risk Management Consultant
To learn how to receive support from a CRISC-certified risk management expert, phone Progent at 800-993-9400 or visit Contact Progent.