Presentation is loading. Please wait.

Presentation is loading. Please wait.

© 2010 by Security Risk Solutions, Inc. Security Risk Solutions, Inc. SBIOI - 27 January 2011.

Similar presentations


Presentation on theme: "© 2010 by Security Risk Solutions, Inc. Security Risk Solutions, Inc. SBIOI - 27 January 2011."— Presentation transcript:

1 © 2010 by Security Risk Solutions, Inc. Security Risk Solutions, Inc. SBIOI - 27 January 2011

2 © 2010 Security Risk Solutions, Inc. 2 Woman Owned Small Business Launched in 2004 Serving Federal and Private Sector Clients Information Security and Risk Management Consulting Services Including:  Information Assurance Risk Management  Program Risk Management  Vulnerability Assessments & Penetration Testing  Business Impact Analyses  Security/Compliance Audits & Reviews  Healthcare Systems Interoperability and Health IT Security and Privacy  OCTAVE Training About Security Risk Solutions, Inc.

3 © 2010 Security Risk Solutions, Inc. Core Service Offerings 3 Information Assurance Risk Management Services Information Assurance Risk Management Organizational Business Impact Analysis Organizational Resiliency Planning Test Training and Exercise (TT&E) Policy and Guidance Development and Compliance Program & Project Risk Management Services Audit and Development of Corporate and Regulatory Compliance Programs Information Assurance Program and Project Management Information Assurance Technical Services Technical Vulnerability Assessments Continuity of Operations Certification and Accreditation Application Assessments Penetration Testing and Analysis Health IT Services Standards Harmonization and Interoperability Health IT Security and Privacy Services

4 © 2010 Security Risk Solutions, Inc. 4 Space and Naval Warfare Systems Center Atlantic  Cyber Analysis and Infrastructure Protection (CODE 56110) Multi-Dimensional Resiliency Model (MDRM) - NRO NGB – Electronic Security Systems (Security Test and Evaluation)  VA: Chapter 33 Post 9/11 GI Bill: Risk Management, IT Contingency Planning JAL FHCC: Program Risk Management  Navy Medicine: NAVMISSA IT Contingency Planning – MTFs and PORs EIA Organizational and Technical Risk Management US Department of Health and Human Services:  ONCHIT (Office of the National Coordinator for Health IT) Standards Harmonization Collaborative program in conjunction with the American National Standards Institute (ANSI)  Led Development of Technical Interoperability Specifications for Security, Privacy and Infrastructure (HITSP Standards incorporating HL7 messaging, XACML, XSPA etc)  Standards published in the Federal Register in January 2009 Representative Clients and Partners

5 © 2010 Security Risk Solutions, Inc. 5 FDA/NIH: Security design, development and C&A for inter-agency programs including:  Safety Reporting Portal for Adverse Effects:  IBC-RMS: The Institutional Biosafety Committee Registration Management System designed to support monitoring of Institutional Biosafety Committees conducting recombinant DNA research.  GeMCRIS: The NIH/FDA Genetic Modification Clinical Research Information System supports human gene transfer research. Georgetown University Medical Center - Global Argus: Indications and Warnings (I&Ws) to alert U.S. responders of an imminent bioevent. Used by the NIH and the U.N.'s WHO to check for outbreaks of all kinds, from SARS to avian flu. Princeton Healthcare System (PHCS), Cancer Treatment Centers of America (CTCA), and other commercial healthcare organizations. The Independent Electricity System Operator (IESO), Canada OASD/HA, in conjunction with Georgetown University and the Telemedicine and Advanced Technology Research Center (TATRC) at Ft. Detrick, MD. Software Engineering Institute (SEI) / CERT® Coordination Center (CERT/CC) at Carnegie Mellon University (a Federally Funded Research Center); Networked Systems Survivability Group Representative Clients and Partners

6 © 2010 Security Risk Solutions, Inc. SEI/CERT Activities OCTAVE: Operationally Critical, Threat, Asset and Vulnerability Evaluation SRS has conducted instructor (Train the Trainer) and General OCTAVE training classes at SEI/CERT and for our own clients 6 ® OCTAVE is registered with the U.S. Patent and Trademark Office by Carnegie Mellon University Operationally Critical Threat, Asset, and Vulnerability Evaluation is a service mark of Carnegie Mellon University. OCTAVE Training is on the SRS GSA schedule (IT70) SEI/CERT utilizes SRS staff to Conduct research and on-site engagements with the Networked Systems Survivability group in the areas of Risk Management, Mission Assurance Analysis Protocol (MAAP), Resiliency Management Model and other related areas.

7 © 2010 Security Risk Solutions, Inc. Task Team Composition 7

8 © 2010 Security Risk Solutions, Inc D&B Open Ratings Past Performance Report 8

9 © 2010 Security Risk Solutions, Inc. Corporate Information Corporate Name:Security Risk Solutions, Inc. (SRS) Company Category:Small Business, Woman Owned Business Incorporation Status: S-Corporation State of Incorporation: South Carolina Facility Security Clearance: Top Secret Products and Services Offered Information Security Professional Services including Technical Vulnerability Assessments, Technical and Business Risk Assessments, Consulting, and Regulatory Compliance Audits. SRS also conducts leading edge research and validates emerging security assessment methodologies for the CERT at the SEI. Years in Business: Currently in 7th year. D&B (D-U-N-S) Number: CAGE Code: 41MQ0 GSA IT70 Contract: GS-35F-0034W SeaPort-e: SN D-5055 (Evolvent Acquisition Corporation ) N D-4024 (Booz Allen Hamilton) Website: 9

10 © 2010 Security Risk Solutions, Inc. Contact Information 10 Johnathan Coleman, CISSP, CISM, CBRM Principal, Security Risk Solutions, Inc. 698 Fishermans Bnd., Mt. Pleasant, SC Tel: (843) Cell:(843) Johnathan Coleman, CISSP, CISM, CBRM Principal, Security Risk Solutions, Inc. 698 Fishermans Bnd., Mt. Pleasant, SC Tel: (843) Cell:(843) Joseph Sabin Esq., CISSP, CBCP, ITIL,CRISC Director, Federal IA Programs Security Risk Solutions, Inc. Tel: (843) Cell: (843) Joseph Sabin Esq., CISSP, CBCP, ITIL,CRISC Director, Federal IA Programs Security Risk Solutions, Inc. Tel: (843) Cell: (843) Website: Papers/Publications: Ronald Krutz, Ph.D., PE, CISSP, ISSEP Chief Scientist Security Risk Solutions, Inc. Tel: (843) Ronald Krutz, Ph.D., PE, CISSP, ISSEP Chief Scientist Security Risk Solutions, Inc. Tel: (843)


Download ppt "© 2010 by Security Risk Solutions, Inc. Security Risk Solutions, Inc. SBIOI - 27 January 2011."

Similar presentations


Ads by Google