<
 
 

Industry Security Maturity Profiles (ISMP)SM

One of the most challenging aspects of security assessments is determining benchmarks for an organization.  Anitian has a unique and powerful way to quickly and effectively handle benchmarking with our exclusive Industry Security Maturity Profiles.  Drawing upon our decades of auditing expertise, Anitian has developed a comprehensive set of profiles for dozens of different industries.  This set of profiles includes best practice benchmarks for health care, education, credit unions, Native American gaming, manufacturing and many other industries.

These profiles serve as a common point of reference for our security analysts.  Mostly, these profiles are customized for each specific business.  This ensures a more accurate, relevant, and contextual audit.

Architecture of an ISMP

An ISMP has five main components, as described below.

  1. Expectations & Assumptions
    This is an expository section that describes the nature of the profile and the business or industry where it applies.  This section establishes high-level expectations of the organization as well as any assumptions Anitian uses when conducting the tests.

  2. Risk Modifier
    This section establishes key risk modifiers for the organization.  For example, if a company works with data that poses a threat to national security, the risk associated with the company is therefore increased.

  3. Strategic Maturity Assessment (SMA)
    This assessment section covers high-level business issues such as policies, employee awareness and executive sponsorship.

  4. Operational Maturity Assessment (OMA)
    This assessment section covers day to day operational elements of the business such as separation of duties, development lifecycles and documented practices and procedures.

  5. Technical Maturity Assessment (TMA)
    This assessment section covers the technical maturity of the organization regarding issues such as perimeter security, application protections and system hardening.

Benefits of ISMP
Anitian’s use of our ISMPs has many benefits over the traditional security practice:

  • Anitian can analyze your business against multiple standards simultaneously.

  • ISMPs allow Anitian analyze your business against similarly sized industry peers.

  • Gap analysis is performed against other organizations in your specific industry ensuring greater relevance.

  • ISMP highlights area of strength and weakness, which helps business leaders understand their security posture in greater detail.

  • ISMPs allow for efficient analysis of a business resulting in shorter assessment and audit times – saving you money.

Industry profiles are an exclusive service mark of Anitian Corporation and are available only from Anitian. For more information or to arrange for an informational, no-obligation meeting, please call (503) 644-5656 or email info@anitian.com.  

Services

> Services Home

> Overview

> Audit & Assessment

  - Risk Assessments

  - Penetration Testing

  - Compliance

 > Remediate & Optimize

   - Identity Management

   - Policy Development

   - Network Engineering

   - Systems Integration

   - Training & Education

   - Technical
     Documentation

> Monitor & Govern

   - Validation & Reporting

   - Managed Security

   - SecureLink for Small
     Business

   - Incident Response
     & Forensics

   - Emergency Response

 

  
 

All material in this web site is copyright © 1995-2006, Anitian Corporation. All Rights Reserved Worldwide
Please read our copyright and privacy policy page for more information.