We develop new and innovative solutions for information assurance.
The rapid adoption of agile methods in the public sector has outpaced risk management developments in some departments. We have developed principles and processes to allow risk management and accreditation to work smoothly with projects that use agile methods, whilst simultaneously providing better security. We have written a paper about the implementation of a light-touch risk management approach.
The concept of an attack tree is not new, but we have evolved it as part of a risk assessment process that can support projects that are delivered both by traditionally 'waterfall' processes, and agile methods. By having a consistent, business-led process our clients are saving time and money on their assurance and accreditation. Find out more about RiskTree.