Information Security & Operations Scorecard

By: Data Perceptions Inc  07-07-2016
Keywords: Security, Risk Management, Computer Networking

Data Perceptions uses a combination of methods to collect the information for the Information Security Report. Information is collected from workshops, interviews, configuration documents, network vulnerability scans and observations to develop the Information Security Report. Data Perceptions has developed a formal approach to helping organizations arrive at the answers to key security concerns and to provide a roadmap on which to proceed in their risk mitigation effort. Data Perceptions uses our custom Information Security & Operations Scorecard Methodology to aid in providing a risk assessment profile for an organization. The Scorecard was developed based on the 20+ years of experience of each of our team members dealing with security breaches and implementing preventative measures. The scorecard was designed to align with the ISO 27002:2013 framework, the internationally accepted framework for IT controls. The CMMI (Capability Maturity Model Integration) scale is used to measure the effectiveness and maturity of managing and applying security controls. The CMMI scales ranges from 0, where processes do not exist to a 5 with a well-documented continuous improvement process. Most organizations strive for the 3-4 range depending on the industry segment. Data Perceptions’ proposes to provide experienced consultants to lead your key information security stakeholders through a security scorecard process to help identify priority information security tasks, projects, and provide recommendations for improvement. Data Perceptions proposes a collaborative approach through workshops to understand and define the organization’s security strategy. This cost effective approach will ensure that the outcomes meet the organization’s expectations. Workshops will be facilitated by a team of two (2) experienced consultants. This will provide a broader range of experience and knowledge during the workshops so that decisions can be made timely and confidently. The Scorecard process will lead your organization’s key information security stakeholders in a workshop to understand and rate fourteen (14) security areas in an interactive workshop format. During the workshop, stakeholders will rate each of the security principles based on: • Current Organization Maturity; • Identified Target Maturity; and • Organizational Priority for Improvement. Based on the outcomes of the first workshop, a second workshop will be held to identify and prioritize mitigation tasks. The mitigation tasks will be based on general tasks identified in the ISO 27002:2013 standard, organization specific tasks, and constraints. The output of the Scorecard process is a prioritized project and task list, specific to the organization, to address priority security gaps. Data Perceptions will also prepare a Security Ecosystem Map, Security Action Item Roadmap, and an Executive Summary of the workshop outcomes and recommendations for improvement. Please visit for more information

Keywords: Computer Networking, Computer Security, network security, Risk Management, Security, Security Management

Other products and services from Data Perceptions Inc


Cloud Service Migration

Cloud services offer advantages in scale of operations and specialized expertise. Cloud services are provided by specialized vendors that can reduce costs, reduce business interruption and improve quality. Attaining the desired state requires a one-time migration or transition. Data Perceptions’ large base of cloud service associates and contractors are entrepreneurial team oriented contributors. They are chosen for each project based on skill sets, core values, and cultural fit.


Project Implementation

Project implementation excellence in operational improvement projects is key to enhancing quality products, services, and increasing productivity.


Information Security and Operations Scorecard

Our Information Security & Operations Scorecard methodology allows organizations to evaluate their current security and operational state, and develop a roadmap to reach a balanced, holistic and layered approach to mitigate risks.

IT Operations from Data Perceptions Inc thumbnail

IT Operations

Data Perceptions IT operations practice can help organizations from small to large build IT operations that provide efficient and reliable service matched to organizational goals.

IT Infrastructure from Data Perceptions Inc thumbnail

IT Infrastructure

Supporting infrastructure should seamlessly support applications. It should provide the necessary cost optimized reliability, security, and performance required by the business. Infrastructure operational practices should align with the strategy of the organization. Successful projects are highly dependent on the skills of the implementation team. Data Perceptions’ large base of infrastructure associates and contractors are entrepreneurial team oriented contributors.

Applications Development from Data Perceptions Inc thumbnail

Applications Development

Application development can fulfill many requirements including: • application integration and customization, • development of custom products and services, and • productionizing in-house developed pilots or proofs of concepts. Most require production ready code that is robust, performance oriented, and follows a full product development life cycle. Custom developed software needs to be designed for ongoing improvements and marketplace change.

Project Management from Data Perceptions Inc thumbnail

Project Management

Project management is fundamental to keep the team focused on project goals and desired outcomes. Monitoring progress, costs, scope and making project adjustments is vital to effective results. Data Perceptions has experienced project managers with expert business and technology acumen that help projects complete on time and on budget.

Technology Strategic Planning from Data Perceptions Inc thumbnail

Technology Strategic Planning

Data Perceptions technology strategy services help organizations to identify, evaluate, and develop business opportunities for new or improved operations, products, and services that span the complete cycle of innovation and operational improvement.

IT Consulting Services from Data Perceptions Inc thumbnail

IT Consulting Services

Data Perceptions' consulting services span the innovation and operational improvement cycle including: Technology Strategy, Project Management Office (PMO), Applications, IT Infrastructure, and IT Operations.