How does SecuriThink approach an assessment?

The SecuriThink methodology draws on a bank of over 200 questions from which a dynamic subset is selected for your project. We work with you to ensure the sample of stakeholders is useful and often apply different question protocols according to their role.

Assessment areas typically include:

  • Characteristics of the change (ex. current/desired state; relevant history, impact, knowns/unknowns)
  • Characteristics of the organization (e.g. business purpose, structure, culture, locations, readiness for change)
  • Business context (e.g. relevant industry and marketplace trends, regulations, and cyber threat landscape)
  • Risks and Opportunities for Leverage (e.g. compare/contrast this project to research and best practices)

See also: Why does a SecuriThink project always begin with an assessment?

More FAQ

Why does a SecuriThink project always begin with an assessment?

Our clients engage us to get from one place to another so we might think of an example as “We’re in Chicago and we want you to help us get to San Francisco.” What we’ve learned is that someone who says they’re in Chicago might actually be in St. Louis or maybe even Miami.

What is Cultural Armour?

Cultural ArmourTM is achieved when cybersecurity is embedded in company culture. It means you walk the talk that “Everyone has a role in cybersecurity.”

Are SecuriThink practitioners experts in cybersecurity technology?

Starting with our founder’s degree in computer engineering and cybersecurity credentials, technology is at the core of what we do. Cybersecurity is a very broad area; no one person knows it all. We work well with Subject Matter Experts (SMEs) to make sure all your bases are covered.