 |
 |
About RA2 art of risk: RA2 art of risk is the new risk assessment tool from the originators of the previously successful RA Software Tool. This latest tool is more than just a risk assessment tool – it covers a number of security processes that direct businesses towards designing and implementing an information security management system (ISMS). "Its a beautiful design that delivers management results" – that is how experts from around the world have expressed its potential. RA2 art of risk is a risk approach with a difference, a management tool with a mission and purpose. It is designed to help businesses to develop an ISMS in compliance with the ISMS specification ISO/IEC 27001:2005 and the code of practice ISO/IEC 27002. RA2 art of risk provides software support to design and implement an ISMS in accordance with the requirements of ISO/IEC 27001:2005. This includes: - Defining the scope and business requirements, and the ISMS policy and objectives - Developing an ISMS asset inventory - Carrying out an ISMS risk assessment - Facilitating the risk decision process by consideration of the appropriate risk treatment option - A process for selecting a system of controls - A documentation facility for producing, for example, a “Statement of Applicability” and the other required ISMS documents RA2 art of risk provides a user friendly, easy to understand step-by-step process approach. It also includes a comprehensive “What’s this?” help assistant facility, and various built in checklists and questions to ensure that nothing has been forgotten. A fully worked through example has been integrated that can be called up at any time in the risk assessment and treatment process to illustrate how the tool can be used to support the ISMS development and implementation. RA2 art of risk can be completely customised to meet the requirements of your organization. This includes the assessment of assets, threats and vulnerabilities applicable to your organization, and the possibilities to include controls additional to the ones in ISO/IEC 27002 in the assessment. It also includes a set of editable questions that can be used to assess the compliance with ISO/IEC 27002. A successful risk assessment and management needs to collect information from different sources within the organization. RA2 art of risk includes the RA2 Information Collection Device, which can be installed anywhere in your organization as necessary to collect and feed back information into the risk assessment process. Information assessed in the risk assessment can be exported to this Information Collection Device, and the information collected with help of this device can be automatically imported back into the risk assessment. When the process of designing and implementing the ISMS has been finalised, RA2 art of risk allows to create an archive that stores the results of this activity separately, whilst these results can at the same time be used as the basis for the next assessment in the ongoing risk management activities. It is also possible to import results from the previous RA Software Tool into RA2 art of risk to use these results now in the new tool. Your organisation needs to protect its information against a range of risks. Experience has shown the importance of effective risk management in today's modern business arena. It is important for management to understand what information security risks and impacts the business is likely to be faced with. This helps to facilitate informed decision-making in order to identify and implement an appropriate system of controls and processes to manage these risks. Risks caused by the lack of information security can severely damage a business. Knowing the “art of risk” enables a business to protect itself and to minimise any damage. Let RA2 art of risk help you in this quest. The current version RA2 art of risk V 1.1 includes both, the old controls from ISO/IEC 17799:2000 as well as those from ISO/IEC 27002 to allow users an easy migration to the new standard, if necessary. This is supported by a "conversion" function that automatically suggests a conversion of the controls selected from ISO/IEC 17799:2000 to those in ISO/IEC 27002. The price for the full version is 1500.00 € (plus VAT and shipping costs, as applicable). Users of older RA2 art of risk tools can purchase an upgrade for 300.00 € (plus VAT and shipping costs, as applicable). Very important for the users of the RA2 art of risk tool: all results that have been produced with the RA2 art of risk tool can be imported, so migrating over to the new version is extremely easy. A new version with more user-friendly features, such as importing of existing asset lists, is currently under development - more news will be published soon on this Web site. RA2 art of risk Demo: This Demo Version of RA2 art of risk provides a fully worked case study to illustrate how the tool might be used in a practical business environment. Going through this case study example gives the reader with a guided tour of how each of the steps in the risk assessment process could be used to support the design and development of an ISMS. This provides an opportunity to view and evaluate the capability and functionality of the product based on the case study example of risk assessment in practice. Please note that this Demo Version is still the Demo of RA2 art of risk as the only real aditional function relates to the controls from ISO/IEC 27002 and the update from the old to the new controls. Download the Demo Version of RA2 art of risk here. System requirements: For the unlikely event that the appropriate database environment is not in place, download and install the Database Environment Setup to create this environment. How to purchase: To purchase RA2 art of risk V 1.1, just send a mail to ÆXIS Security Consultants including an official letter or a purchase order from your company, and indicate whether you prefer the use of a courier service or normal mail, and your copy of RA2 art of risk V 1.1 will soon be with you. The price for one copy of the tool is: - 1500.00 € (plus VAT and shipping costs, as applicable) for the Full Version of RA2 art of risk V1.1 More Information: For further information about RA2 art of risk contact:
|
 |