Company

Technical Security Consulting

Managing Risk

Research & Development

Forensics

Security Management

Media Centre

PCI DSS

• Home
• Overview
• Risk Mgmt. for Compliance
• Business Impact Assesment
• Risk Assessment
• Security Policies
• Technology & Risk
• Managing Internal Controls
• Risk Management Standards
• Data Audits & Compliance
• Sec. Awareness Progs.
• Incident Management
• Business Continuity Plans
• Disaster Recovery
• Recovery Testing

Risk Management Standards

One may think that the moment an information security policy is implemented the issue has been resolved, but that is hardly the end of the matter. Such policies need to be supported by risk management standards that provide mandates for business areas, project designers, project developers and implementation authorities. These standards must be congruent with risk management policy and the risk appetite of the organisation and the business culture.