NIST Cybersecurity Framework
Tevora will conduct a bottom-up review of all security tools and processes currently in place and evaluate their effectiveness in the context of NIST Cybersecurity Framework and the COBIT 5 Maturity Model.
Our experienced consultants analyze how each tool is configured, how it’s being operated, and the effectiveness of the personnel responsible for using the tool. A process review will uncover “silent failure” scenarios where logs may be missing or alerts may not be generating the appropriate response.
The result of the assessment is a comprehensive maturity score for all NIST controls, the scoring of control maturity as compared to businesses of a similar size and industry, a description of critical findings that require immediate attention, and a roadmap for improving control maturity over time.
Ongoing Security Operations Reviews
It is important to continually review and assess the controls that your organization relies on for the security and integrity of your data and systems. Tevora’s ongoing operations review consists of periodic assessment of tools and processes that are critical important to the business. These reviews commonly extend to cloud and managed service providers which often operate beyond the purview of their customers.