Executive Briefing

The Executive Briefing combines an Information Security Awareness briefing with a Review of Results for completed Intrusion Testing or Security Assessment. This briefing is aimed at top-level managers or corporate officers having broad policy and strategic responsibilities in the organization.

The Executive Briefing is intended to provide the organization's top executives with a security context and a summary report of SSG's findings to help them make informed risk management decisions.

Service Methodology

In the Security Awareness portion of the Executive Briefing, SSG security professionals explain how the organization's reliance on external networking infrastructure exposes it to a new and unfamiliar set of risks. In the Review of Results portion of the Executive Briefing, security professionals discuss their specific findings and the consequent security issues and risks to the organization, followed by an overview of possible remedies. The Executive Briefing addresses business issues such as the potential costs and liabilities due to the actions of hackers or industrial spies infiltrating the organization's networking infrastructure. The briefing discusses actions the corporate executive and manager can take to prevent loss of revenue and person-hours that can result from network intrusion.

Client Deliverables

Attendees will have gained a deeper insight into the importance of information security to their organization, the risks to which they are currently exposed, and the strategic actions they might consider to mitigate those risks.

All attendees of the Executive Briefing will receive presentation materials, reference materials and pointers to additional information. The Executive Briefing is generally presented at the client's location; however, as an option, it can be conducted either at SSG offices or at a neutral location, upon the client's request.

Client Benefits

An Executive Briefing will assist the organization's leaders to improve their understanding of the role of information security in their organization. This includes the importance of security countermeasures as a risk management tool and the potential impact of security breaches and security countermeasures on daily operations. This briefing will address the importance of information security to continued business operations, and discuss the organization's obligations to protect proprietary or confidential information. An Executive Briefing will help executives understand information security's role in risk management. The briefing will outline strategic actions the executives might take to mitigate security risks.

Technical Briefing

The Technical Briefing combines a broad information Security Awareness briefing with an in-depth, technical Review of Results for completed Intrusion Testing or Security Assessment. This briefing is aimed at information systems and information security managers and administrators having tactical and technical administrative responsibilities in the organization.

The Technical Briefing is intended to provide the organization's information security and systems staff with security context and a technical report of SSG's findings to help them improve their organization security architecture and processes.

Service Methodology

In the Security Awareness portion of the Technical Briefing, SSG security professionals present an overview of security threats and system vulnerabilities, focusing on the latest Internet-based attack scenarios and tools. In the Review of Results portion of the Technical Briefing, security professionals discuss their security findings in terms of specific vulnerabilities identified and the consequent security issues and risks to the organization, followed by an overview of possible technical and procedural remedies.

The Technical Briefing addresses technical security issues such as the avenues by which hackers or industrial spies could infiltrate the organization's networking infrastructure and the measures the organization could take to counter these threats.

Client Deliverables

All attendees of the Technical Briefing will receive presentation materials, reference materials and pointers to additional information. The Technical Briefing is generally done at the client's location. However, as an option, it can be done either at SSG offices or at a neutral location, at the client's request.

Client Benefits

Attendees will gain a deeper insight into the impact of information security to their organization and their information systems infrastructure, current infrastructure vulnerabilities, the risks to which they are exposed, and the technical and procedural countermeasures they might consider to improve their infrastructure security.

The Technical Briefing will provide the client's information systems staff and security personnel with a more detailed understanding of specific security issues relevant to their organization. This will help the client's staff take actions that improve security posture and protect information resources.