The purpose of the design phase is to jointly discuss and agree upon management parameters of the assurance program. This includes primarily key objectives, budget, scope, timeframe, contributing parties, milestones and similar aspects. Further, the design phase aims to capture stakeholder wishes and expectations.
To begin the program, an assessment is conducted that determines what aspects of hygiene are already in place and where gaps exist that need to be filled. If defense infrastructure and tooling exists in the environment but is not yet leveraged for the purpose of achieving security hygiene, this will be identified as well.
Very much like a for a regular security program roadmap, initiatives need to be developed that ultimately ensure the hygiene state. The emphasis will be to bring in defense solutions that address hygiene at scale, meaning that work short term and long term even in high load or highly regulated environments. Defining the appropriate objectives and initiatives in alignment with budget and other relevant requirements is part of the third phase of the engagement.
Next, our teams will implement the work necessary to achieve the hygiene state in the target environment. This phase can be executed solely by CISOCON or in close collaboration with onsite teams and development workflows.
We've created the following service for you.
Our Hygiene Assurance Program has been designed to support you to achieve the hygiene state quickly and cost efficiently.