Managing security in the digital era


 

 

 —   Risk Management    —   Regulations    —   Risk Report    —   Technical Controls    —   Classification    —   Risk Awareness    —   Asset Register    —   Cyber Security    —   ROI    —   Privacy    —   ISO/IEC 27001    —   People Controls    —   Organisational Control    —   Performance    —   Compliance    —   Project Risk    —   Risk Treatment    —   Information Security    —

About Veriscan

Veriscan started in 1999 to enable organizations to measure their information security performance. This led to developing Veriscan Rating, a well-recognized method including tools in Sweden. Veriscan early on based the company on the three pillars, Veriscan 3i.

  • Information Security: Focus on information security that now encompasses cyber security
  • ISO standards: Build and support the development of international recognized standards such as the ISO 27000 series
  • Independent Solutions: Creating tools and methods to support the management’s need of business control

    Veriscan products

    Veriscan has combined practical experience with the deep knowledge of international standards for over 15 years to develop products that can support organizations and experts around the world. These products handle information and cyber security in the ever-increasing digitalization and business possibilities that this evolution brings.

    This page focuses on two core support products to enable the business to get in control of security. They simply provide easy and pragmatic support to answer the two questions “what” you need to protect (Veriscan vIC™) and “why” and who should protect (Veriscan vRISK™). Both support ISMS according to ISO/IEC 27001 as well as other regulations such as GDPR.

     

    Veriscan partners

    Veriscan has several partners that provide demonstrations and offer the Veriscan products. A Veriscan partner may also provide additional services. Veriscan will provide further information about partners upon request.

    Veriscan is constantly seeking new partners to provide our products to enhance management of security in the digital era. If your company is interested in becoming a trusted Veriscan partner, please do not hesitate to contact us.


     

    Veriscan vRISK™


    All business is about taking risks. The trick is to make conscious decisions on risks. The key to being able to make those decisions is that risks are identified and evaluated in a transparent and coherent manner within the organisation. Risk assessments must be made easy:

    • Identify risk and evaluate them
    • Decide risk treatment and activities
    • Communicate, report, mitigate and follow up activities for risk reduction

    There is no point in doing risk assessments if there is no activity done on the result; otherwise it is just an administrative burden.

    Practicality is the prime focus of Veriscan vRISK, the second but not less important is the flexibility to handle many types of risks and link these to many aspects.

    It seems so simple that a single risk may address many issues, but anyone with some experience knows that it is a challenge in any organisation with multiple regulations and a complex IT dependency. Just viewing Veriscan vRISK for a couple of minutes will make it evident that this tool can take the theory to reality!


    Veriscan vRISK enables

    vRiskOptimalControl

    Optimal Control by:

    • Status and follow up of risks across the whole organization
    • Using risk assessments to integrate security in the normal work
    • Ability to address all types of risks, operational risks, information security risks, financial risks, etc
    • Transparent reporting can be made from many aspects and combinations suitable for different target groups
    vRISKFlexebility

    Flexibility by:

    • Configure according to your needs
    • Use your control catalogue, risk categories etc
    • Reflects the structure of your organization regardless of size
    • Using your defined organizational structure and terminology, e.g. methods, taxonomy, roles and responsibilities
    vRISKCostEfficiency

    Cost Efficiency by:

    • A standard web browser on any device may be used
    • Get started immediately
    • Modern easy-to-use touch-GUI
    • Easy reporting by instant visibility of risks and activities
    • No client installations needed
    vRISKGraphicalReports

    Graphical Reports:

    The report shows:

    • Risk levels from start
    • Target level after risk treatment
    • Status of activities, etc

    Veriscan vIC™


    What you need to protect depends on your business but do the persons responsible in the business know what information assets they have of critical value and where they reside? The trick is not just to understand what to protect but also why and where protection is needed. The key enabler is to identify the information assets and where they reside, especially when it comes to storage and handling in ICT resources and services. The asset register and classification to see criticality must be made easy as information is everywhere in the digital era:

    • Identify your assets and link them to resources being ICT services or other
    • Evaluate the value of the information that sets the demand on protection of the resources
    • Finalize and use a register that enables you to see what is critical and see where and why protection is needed

    Visualizing the dependencies and structure of the valuable assets is the prime focus of Veriscan vIC, the second but not less important is the flexibility to re-use assets already evaluated and build the structure (register) as assessments are made – something a spread-sheet never can do, no matter how complicated.

    Just viewing Veriscan vIC for a couple of minutes will make it evident that this tool can take the theory to reality!


    Veriscan vIC enables

    vICOptimalControl

    Optimal Control by:

    • One register for all information assets and classifications
    • Visual presentation of asset structure and relations
    • Tagging of specific requirements (regulations etc.)
    • Impact assessment of deficiencies from an information security or privacy perspective
    vICFlexibility

    Flexibility by:

    • Configure according to your needs
    • Supports both information and resources as assets
    • Reflects the structure of your organization regardless of size
    • Use your defined process across the entire organization, e.g. methods, taxonomy, roles and responsibilities
    vICCostEficiency

    Cost Efficiency by:

    • No client installations needed, use standard web browsers on any device
    • Get started immediately
    • Modern easy-to-use touch-GUI
    • Easy reporting by instant visibility of assets and classifications
    vICGraphicalReports

    Graphical Reports:

    The reports has immense possibilities such as :

    • Asset structure on information and/or resource level can be graphically visualized
    • List of information in certain resource such as a ICT service by just add that view
    • The value of the asset in different aspects including regulation, contracts etc. can be applied

    Contact

    Veriscan is always looking for new partners and relations. Please let us know your intent and contact information. Veriscan or a partner will get back to you as soon as possible.

    Veriscan Security AB

    info@veriscan.se

    +46 (0)8 85 66 20