Risk Assessment Service Cybersecurity datasheet

HPE RISK ASSESSMENT SERVICE

Advisory and Professional Services from HPE Pointnext Services

SERVICE OVERVIEW

HPE Risk Assessment Service for cybersecurity is designed to assist organizations in obtaining a better understanding of the information

security risk their assets may be exposed to in their operational environment and develop a strategy to either reduce or better manage

it. No matter if your assets are located on-premises or on a private or public cloud, or you are in the process of planning to rehost or

replatform your assets, let HPE help you understand and develop a plan to manage your information security risk. A risk-based approach

and appropriate security measures not only reduce the ongoing operational security and financial risk related to information security but

also allows organizations to react and adapt to changes at a much faster pace and thus create business advantages over competitors.

HPE Risk Assessment Service for cybersecurity is a customizable service based on the size of the environment (number of in-scope assets).

Service duration can vary from one to four weeks and beyond. The assessment methodology for the HPE Risk Assessment Service for

cybersecurity is developed based on the ISO/IEC 270012013 and ISO/IEC 27005. The service provides a comprehensive point-in-time

assessment and analysis on threat, vulnerability, and risk associated with each in-scope asset including associated business process and

existing controls of assets. The asset are evaluated against the organization’s security objectives, which can be composed of legal, regulatory,

and contractual requirements; organization’s strategic and operational requirements; and security risks that are specific to the organization

and/or type of business the organization conducts.

The following deliverables will be provided by HPE at the end of the assessment:

• Workshop documentation

• Asset evaluation report

• Risk assessment report

• Risk treatment recommendations and road map

Table 1 provides additional information on the features available under this service.

SERVICE BENEFITS

• Obtain information on the in-scope assets’ risk potential likelihood and implication

• Understand the risk landscape related to your organization’s strategies and goals

• Select, justify, and understand how to apply appropriate security controls to transform your security, help optimize your business, and

manage risks inherent in the existing operational environment

Data sheet

PAGE 1
Data sheet HPE RISK ASSESSMENT SERVICE Advisory and Professional Services from HPE Pointnext Services SERVICE OVERVIEW HPE Risk Assessment Service for cybersecurity is designed to assist organizations in obtaining a better understanding of the information security risk their assets may be exposed to in their operational environment and develop a strategy to either reduce or better manage it.
PAGE 2
Data sheet Page 2 SERVICE FEATURE HIGHLIGHTS HPE Risk Assessment Service for cybersecurity is a business-led consultative engagement that consists of the following stages: 1. Risk assessment service preparation 2. Kick-off and context establishment 3. Asset evaluation 4. Risk assessment 5. Risk treatment TABLE 1.
PAGE 3
Data sheet Page 3 COVERAGE • Services will be provided during local HPE standard business days and hours excluding HPE holidays.
PAGE 4
Data sheet SUPPLEMENTAL TERMS The following supplemental terms apply to these services and take precedence in the event of any conflict: • Upon receipt of an acceptable order, HPE will contact the Customer within seven (7) business days to organize a service delivery date. Service delivery dates are subject to resource availability and may be scheduled up to 30 days from the order acceptance date. • The Customer must schedule and receive delivery of these services within 180 days from order acceptance.