hursk group logo hursk group mountain
hursk group rocks
Qualitative Risk Management
The Hursk Group Home The Hursk Group Hom

The Hursk Group, LLC

The Hursk Group, LLC specializes in information security risk management. We partner with your company to give you the tools and data to reduce your risk exposure. The demands of your business require you to harness the value of information technology to stay at the cutting edge and remain competitive. But if you don't control your information technology, it could wind up taking over control of your business. Working with The Hursk Group's proven methodologies, You will control your IT. IT will not control you.

As modern business requires an increased dependence on information technology, the risks associated with that dependence grow exponentially. A key aspect of Information Security is to preserve the confidentiality, integrity and availability of an organization's information. These attributes are commonly referred to as the Pillars of Information Security:

Confidentiality: Your certainty that information is shared only among authorized persons or organizations.

Preserving confidentiality entails limiting information access and disclosure to authorized users preventing access by or disclosure to unauthorized users or hackers.  Breaches of confidentiality can occur when data is not handled properly. The keystones of confidentiality are authentication methods that uniquely identify a data system's users, with adjunct control methods that limit each identified user's access to the data system's resources. Also critical to confidentiality, as well as data integrity and availability, are protections against malicious software, spyware, spam and phishing attacks. Confidentiality is also related to the broader concept of data privacy.  In the US, a range of state and federal laws, with abbreviations like FERPA, FSMA, and HIPAA, define the legal parameters of data privacy. The classification of the information determines the appropriate safeguards.

Integrity: Your confidence that the information is authentic and complete.

Integrity refers to the trustworthiness of information resources; ensuring that information can be relied upon to be sufficiently accurate for its purpose. The term Integrity is used frequently when considering Information Security as it is represents one of the primary indicators of security (or lack of it). The integrity of data is not only whether the data is 'correct', but whether it can be trusted and relied upon. This includes the concept of "data integrity" -- namely, that data have not been changed inappropriately, whether by accident or deliberately malign activity.  It also includes "origin" or "source integrity" -- that is, that the data actually came from the person or entity you think it did, rather than an imposter. For example, making copies (say by e-mailing a file) of a sensitive document, threatens both confidentiality and the integrity of the information.

Availability: Your confident reliance on systems responsible for delivering, storing and processing information are accessible when needed, by those who need them.

Availability refers, unsurprisingly, to the availability of information resources and the importance to an organization is relative to how reliant the organization has become on a communications infrastructure.
Almost all modern organizations are highly dependent on functioning information systems.  Many literally could not operate without them.
Loss of one or more of these attributes, can threaten the continued existence of even the largest corporate entities.

Is your organization confident that your information security management is risk averse?

The Hursk Group has developed a novel approach to information security risk management. We start with the premise that successful businesses are aware of the risks faced with an increased dependence on information technology. Our approach presents you with quantitative results that are measurable and objective. With these results your company will have the tools and information you need to take back the reins-put the cart of your information technology back behind the horse that drives your business.

Too often, businesses are forced to adopt a "catastrophic loss" protocol when it comes to information security management. The Hursk Group allows businesses to harness the value of comparative quantitative data to measure risk and to adopt and manage a catastrophic loss prevention protocol.

hursk divider

 
Home |  Solutions |  Careers |  About Us |  Contact Us
© 2006 The Hursk Group, LLC
Designed by Everdigital Solutions