Security, Compliance & Resilience Management System (SCRMS)

We are very pleased to announce the release of the Security, Compliance & Resilience Management System (SCRMS). This was a significant effort by a group of select industry experts to build an actionable approach for companies of any size to become secure, compliant and resilient.

We did this for you, so put on a fresh pot of coffee (or your preferred beverage of choice) and download the SCRMS to see how that can drastically improve your cybersecurity governance practices.

The SCRMS is a framework and technology-agnostic approach to design, implement and maintain secure, compliant and resilient capabilities.

The SCRMS functions as an operational assurance model that has two goals:

1. Minimize the attack surface; and
2. Provide “defensible evidence” of reasonable practices that are capable of withstanding external scrutiny (e.g., regulators, class action lawsuits, insurers, etc.).

The SCRMS is:

✔ A free resource to build secure, compliant & resilient capabilities.

✔ A way to make security decisions defensible.

✔ A bridge between executives and practitioners.

The SCRMS is not :

❌ A new compliance framework.
❌ A replacement for NIST or ISO.
❌ A tool or platform.