Emantra Logo
icon

Our Services

Cyber resilience framework

CYBER RESILIENCE RAMEWORK

A Cyber Resilience Framework (CRF) is a centralised structure of digital asset discovery, analysis, process, control and documentation which sets out your organisation’s posture on managing its cyber risk security for today and resilience for tomorrow.

It considers the existence of risk in your context, which occurs at the intersection of three key attributes of your business – Valuable digital assets, vulnerabilities and threats.  If these characteristics don’t exist – even just one of them – you don’t have risk.  Think about it.

It utilises the three main levers you have – personnel, technology and processes.  That’s it, no magic pudding, no silver bullet.  There are established principles in each area that can be applied in your context for best protection.

It addresses three critical goals – the confidentiality, the integrity and the availability of your digital assets and systems.  The consequences of a material cyber breach can be many – financial, reputational, penalty – but if you have achieved coverage of these three critical goals, you have fulfilled your fiduciary and legal responsibilities as business managers.

Emantra will apply a best practice approach based on the NIST and ISO 27000 standards to ensuring you have the right CRF for your context.

Normally, this would start with an inventory and analysis of your personnel, technology and processes; a risk weighted assessment; followed by presentation and acceptance of recommendations, and the implementation of, an agreed executive level plan.

We’ll examine your compliance requirements including privacy and supply chain mandates.  We’ll help you manage change and a culture shift if necessary, ensuring all elements are in place to provide your business and its stakeholders with the protection needed.

CYBER RESILIENCE RAMEWORK

architecture

A Cyber Resilience Framework (CRF) is a centralised structure of digital asset discovery, analysis, process, control and documentation which sets out your organisation’s posture on managing its cyber risk security for today and resilience for tomorrow.

It considers the existence of risk in your context, which occurs at the intersection of three key attributes of your business – Valuable digital assets, vulnerabilities and threats.  If these don’t exist – even just one of them – you don’t have risk.  Think about it.

It utilises the three main levers you have – personnel, technology and processes.  That’s it, no magic pudding, no silver bullet.  There are established principles in each area that can be applied in your context for best protection.

It addresses three critical goals – the confidentiality, the integrity and the availability of your digital assets and systems.  The consequences of a material cyber breach can be many – financial, reputational, penalty – but if you have achieved coverage of these three critical goals, you have fulfilled your fiduciary and legal responsibilities as business managers.

Emantra will apply a best practice approach based on the NIST and ISO 27000 standards to ensuring you have the right CRF for your context.

Normally, this would start with an inventory and analysis of your personnel, technology and processes; a risk weighted assessment; followed by presentation and acceptance of recommendations, and the implementation of, an agreed plan.

We’ll examine your compliance requirements including privacy and supply chain mandates.  We’ll help you manage change and a culture shift if necessary, ensuring all elements are in place to provide your business and its stakeholders with the protection needed.