CYBER RISK ASSESSMENT AND RISK MANAGEMENT

Bad Rabbit Security can perform on-site or off-site risk assessment of your organization’s security processes and technical controls. We use our own sophisticated risk tooling based on a combination of qualitative risk assessment tools and methodology aligned to the NIST SP 800-30 Guide for Conducting Risk Assessments.

​

Our risk assessments can be mapped to an organization’s current compliance programmes, or based on industry standard governance schemes such as NIST CSF, ISO27001/2, PCI-DSS, SOC2 and NIS2.

​​​

​

​

Following a risk assessment, Bad Rabbit Security will provide:

• detailed reports and risk treatment plans

• assist in establishing a risk register

• perform gap analysis against your current state cyber security

​

We can provide full consultancy services to assist in:

​

• selection, deployment and management of controls to treat the identified risks

• design of appropriate policies and procedures

​

We can integrate our findings into your existing GRC, or deploy and manage a tailored GRC solution if required.

​

​