Security audit with Strategy2Act software 

This scorecard was created by AKS Security Expert, using Strategy2Act software.

Creation time stamp: 10.05.2006 0:16:36 

 

Vision tree: IT Security Metrics
Suggested solution:  Security audit with Strategy2Act software
  Learn strong and weak points of organization. Suggest possible ways to solve security problems.

Solution response:

 Invest necessary means to integrate security costs into the system life cycle, check and approve system security plans for laptops
Score: 74 of 100
Scorecard:
IT Security Metrics 
 Risk Management30
  Security Plan    Comment: 90% coverage, except some laptops and pocket pc computers7 of 12
  Security Controls    Comment: Measured for spam fighting, it required about 1 hour to install patch for all systems. Consider time for other possible threats.6 of 18
 Contingency Planning20
  Backup Frequency    Comment: We do backup two times a day10 of 14
  Incident Response Capability    Comment: We need better reporting features for database6 of 6
 System Life Cycle10
  OMB requirement    Comment: Need to be integrated, in case of data or hardware problems we will save some money0 of 6
  Audit Trails    Comment: 100% audit is possible now only for customer support employees, should consider to add a policy for other employees3 of 4
 Personnel Security20
  Security Awareness    Comment: The latest training date is March, 200610 of 14
  Authentication and Authorize Processing    Comment: Most marketing materials are accessible without authorization, it's OK for our business5 of 6
 Data Integrity20
  Logical Access Controls    Comment: We have about 20% of employees, it's a little more than it's really needed8 of 4
  Anti-virus and spyware protection    Comment: We have all computers with protection software installed10 of 16

 

This report was generated by Strategy2Act - balanced score card support program.

Find more report templates on www.strategy2act.com