Information Security
The SQ Information Security (“SQ-IS”) program includes managed information security practices customized to the threat model developed through a collaborative process. Rooted in sound practices that grow and change as threats evolve, SQ-IS recommends a four stage cyclical practice to achieve the confidentiality, integrity, and availability goals of the business.
- Identify Threat Management Goals
- Develop and Plan a Control Management Framework
- Program Implementation
- Maintain & Evolve Program as Required
Each stage of the SQ-IS program includes multiple practices and activities to identify and manage information security risk. SQ-IS is developed to meet the dynamic nature of technology risks. The program is cyclical, constantly evaluating threats, developing new or augmenting current controls, implementing new solutions and retiring less effective tactics.
SQ-IS is a highly tailored program with subject matter attention and domain expertise. With focus on program requirements, SQ Risk remains technology agnostic in its approach. SQ Risk brings industry experience with the intent to collaboratively achieve a more actionable and successful information security program.