We provide risk management services that meets your every need. We can act as your project risk manager, your system risk manager or we can facilitate a good practice risk management for your critical infrastructure. We also offer to provide training to your employees so they can become best practice risk managers. We support our services with risk management tools, based on ISO27005, ISO31000 and Management of Risks (M_o_R).

We facilitate design, implementation and evaluation of management systems for information security (ISO27001). Our approach is systematic, based on standards and with the support of management tools. Our starting point is ISO27001, which is mandatory in many organizations. It aims to protect against the loss of information in cyber attacks. We also make use of standard frameworks which also include ENISA, NIST, COSO, EBA-guidelines, CPMI-IOSCO and many other highly effective frameworks.

We help your organization to review the efficiency and compliance of ISO27001. We do it through an internal audit, which is a mandatory process in ISO27001. Our approach is efficient, systematic and supported by a management tool. Once data has been collected, analyzed and reported. The approach it set for a recurrent process. We also conduct external evaluations of the internal audit function. Our approach is developed om top of chapter 9-10 in information Security management systems.

We offer side-by-side training. We teach methods for risk management and good practice for information security. We can design and build a risk organization and establishing a best practice culture. We can act as interim CRO, CISO and SME on risk management and information security. Our work is based on many years of practical and theoretical experience. We also basically facilitate workshops for larger departments. The aim is to bring employee enough knowledge to work in and understand data and reporting.

We act as interim program managers when you in a shortage of internal competencies. Our focus is on change management. We are certified in Management of Programmes (MSP), Managing Benefits & Management of Portfolios (MoP).

We act as interim project managers. Our focus is on IT projects and IT management. We are certified in Prince 2 Foundation and Practioner and we also use agile methods and we are certified in SAFe.