Risk Management Advances with Debut of CORA-Web.Business/Technology Editors NEW YORK--(BUSINESS WIRE)--April 2, 2002 International Security Technology Announces Web-based Cost-of-Risk Assessment Product International Security Technology, Inc. (www.ist-usa.com) today introduced the first Internet-based solution to the increasingly daunting daunt tr.v. daunt·ed, daunt·ing, daunts To abate the courage of; discourage. See Synonyms at dismay. [Middle English daunten, from Old French danter, from Latin problem of assessing the cost-risk ratio for information system security. Based on the company's heralded desktop-based Cost-of-Risk Assessment product, CORA-Web(TM) is offered on the Internet as a hosted service. CORA-Web prioritizes the risk exposures of a facility, and identifies the most cost-effective mitigation strategy to make best use of available resources. In the process, it builds a solid business case for risk management recommendations. CORA-Web fully supports the Business Impact Analysis process defined in NIST (National Institute of Standards & Technology, Washington, DC, www.nist.gov) The standards-defining agency of the U.S. government, formerly the National Bureau of Standards. It is one of three agencies that fall under the Technology Administration (www.technology. Special Publication 800-34 A recent Deloitte & Touche study of e-businesses disclosed that no respondents were using risk analysis tools to guide risk management decisions. "This is easy to understand," said William H. Murray, senior researcher on the study, "because until recently there have been no efficient, realistic tools. On the other hand, these are decisions where the use of intuition can result in very expensive error. An efficient tool can easily cover its own cost." F. Lynn McNulty, head of security consultants McNulty and Associates, said, "I have found that CORA and its predecessor IST products to be powerful analytical tools for understanding security issues, and managing risks." While serving as director of information systems security the Federal Aviation Administration Federal Aviation Administration (FAA), component of the U.S. Department of Transportation that sets standards for the air-worthiness of all civilian aircraft, inspects and licenses them, and regulates civilian and military air traffic through its air traffic control , McNulty used these tools to analyze an Air Route Traffic Control Center The principal facility exercising en route control of aircraft operating under instrument flight rules within its area of jurisdiction. Approximately 26 such centers cover the United States and its possessions. Each has a communication capability to adjacent centers. . "This was the first quantitative risk analysis of an ARTCC ARTCC Air Route Traffic Control Center . CORA makes it easy for an enterprise to quantify and manage all of its risks, and CORA-Web will make it easy for a team to collaborate on a project." Open-end questionnaires have limitations that are overcome by CORA-Web's quantitative model of risk, which focuses attention on the specific details of the risk environment needed to make prudent management decisions. Each user defines exactly which risk factors to include in a risk analysis, and employs the results to evaluate the cost/performance of a full range of risk mitigation, risk transfer, and risk recovery measures. The application service provider Dynamic Access Systems is hosting CORA-Web. Alan Duncan Alan James Carter Duncan (born March 31, 1957) is a British Conservative politician, and Member of Parliament for Rutland and Melton. He was educated at Merchant Taylors' School, where he was Head Monitor (head boy), and St John's College, Oxford, where he coxed the college first , CEO (1) (Chief Executive Officer) The highest individual in command of an organization. Typically the president of the company, the CEO reports to the Chairman of the Board. , said, "As an ASP, we put great emphasis on risk management to ensure that we achieve the service levels that our clients expect of us. CORA makes it easy to analyze our risks, particularly threats that can cause service interruptions, and to choose the optimum risk mitigation strategies. The CORA analysis of the DynAccSys ASP systems has made a very strong contribution to our marketing and sales promotion." IST president Robert V. Jacobson said, "One of the inevitable effects of the events of September 11 was that most organizations want to strengthen security. But they've discovered that it is difficult to know where best to put limited resources." To resolve this dilemma, IST is offering a package of consulting services and 24/7 access to CORA-Web, the Internet implementation of IST's Cost-of-Risk Analysis decision support system. IST's Sixty-day Solution package will help senior managers get an overview of risks and help selecting risk management actions quickly and accurately. It consists of 60 days of 24/7 access to CORA-Web, and two days of expert on-site consulting and training to help clients to get started and to configure their risk management projects. A special introductory price of $7,450.00 is available for a limited time, after which the 60-day Solution will be priced at $9,450. About IST International Security Technology, Inc. was founded in 1978 as an independent, privately held corporation Noun 1. privately held corporation - a corporation owned by a few people; shares have no public market close corporation, closed corporation, private corporation specializing in the risk management of high technology systems. Company president Robert V. Jacobson pioneered many of the basic computer security concepts now in general use. He served as the first Information System Security Officer at Chemical Bank (now merged with Chase Manhattan Bank The Chase Manhattan Bank, now part of JPMorgan Chase, was formed by the merger of the Chase National Bank and the Bank of the Manhattan Company in 1955. The bank is headquartered in New York City. ). He is a Certified Information System Security Professional, and a Certified Protection Professional The introduction to this article provides insufficient context for those unfamiliar with the subject matter. Please help [ improve the introduction] to meet Wikipedia's layout standards. You can discuss the issue on the talk page. (CPP cpp - C preprocessor. ) of the American Society for Industrial Security. CORA-Web is the culmination of a methodical me·thod·i·cal also me·thod·ic adj. 1. Arranged or proceeding in regular, systematic order. 2. Characterized by ordered and systematic habits or behavior. See Synonyms at orderly. six-year development project, and draws on nearly 30 years of diverse risk management experience. Additional details are available on the company's web site at www.ist-usa.com. CORA Cost-of-Risk Assessment is a registered trademark of International Security Technology, Inc. |
|
||||||||||||||
Printer friendly
Cite/link
Email
Feedback
Reader Opinion