Implement and test your controls
Compliance & Policy
Clients can choose from many international standard templates or author their own.
Audits can be internal or external, ensuring that you, your suppliers and your
vendors comply with best international practice.
Risk Assessment
Assessing risk is a key part of any security program.
Uniquely, Proteus®GRCyber™ can assess threats by their operational,
financial or regulatory impact and assign countermeasures to mitigate these threats.
Likewise you can assess Confidentially, Integrity and Availability values.
Business Impact
By modelling your business processes, you understand how they relate to each other
and interact with the underlying infrastructure and regulatory controls.
With this approach you can better understand the financial,
regulatory and operational impact of threats that arise within your business.
Security Awareness Training
Good security can only be achieved by creating a security culture within your staff.
According to Gartner 70% of breaches can be traced back to bad practice. Proteus®GRCyber™
integrates online security courses to provide focussed security training where and when it’s needed.
Business Continuity
For every business process critical to your business you need an effective continuity plan.
Proteus®GRCyber™ provides a simple process that can assess the effectiveness of your failover plans.
RiskView2™
Visualising how a threat or breach affects the business is key to reacting in a timely
fashion and may reduce fines and reputational damage. Riskview2™ allows you to view
these relationships clearly and quickly, empowering you to make faster, better decisions.
Look for the unexpected
Staff Profiling
Some staff may not be suited to the positions they hold.
Staff profiling helps avoid these pitfalls up front,
reducing the likelihood of malicious behaviour.
Intelligence-Led Risk Management
Proteus®Analytics™ actively searches the Dark Web, Threat Intelligence feeds as
well as news and social media to monitor for chatter about impending attacks.
‘Forewarned is forearmed’ allowing you to prepare better for an anticipated attack.
Network Traffic Surveillance System
NTSS collects every IP record your network produces and reconstructs them back into
application logic independently of the applications that created them.
This traffic can be monitored for unexpected behaviours and network
activity (eg unauthorised devices).
Penetration & Vulnerability Testing
Securing the business as best you can on the inside is important,
as is rigorously testing this security. Employing the best white
hackers and products ensures you’re first to know about a security
weakness or vulnerability and can fix it before anyone else finds it.
Log and Patch Management
A large percentage of breaches are due to poor patch management and could
have been detected by examining the SIEM logs. Proteus®GRCyber™ collects,
searches and alerts on these logs and scopes the impact before the breach occurs.
Incident, Project, Tasks, Email
When an incident occurs, a quick and effective response is essential. With Proteus®GRCyber™
you can quickly track incidents, create projects and teams, allocate tasks and attach critical information (eg. emails and documents)
in order to neutralise the threat.
the complete GDPR solution
