Security, Compliance & Resilience Management System (SCRMS)
We are very pleased to announce the release of the Security, Compliance & Resilience Management System (SCRMS). This was a significant effort by a group of select industry experts to build an actionable approach for companies of any size to become secure, compliant and resilient.
We did this for you, so put on a fresh pot of coffee (or your preferred beverage of choice) and download the SCRMS to see how that can drastically improve your cybersecurity governance practices.
The SCRMS is a framework and technology-agnostic approach to design, implement and maintain secure, compliant and resilient capabilities.
The SCRMS functions as an operational assurance model that has two goals:
- Minimize the attack surface; and
- Provide “defensible evidence” of reasonable practices that are capable of withstanding external scrutiny (e.g., regulators, class action lawsuits, insurers, etc.).
The SCRMS is:
✔ A free resource to build secure, compliant & resilient capabilities.
✔ A way to make security decisions defensible.
✔ A bridge between executives and practitioners.
The SCRMS is not :
❌ A new compliance framework.
❌ A replacement for NIST or ISO.
❌ A tool or platform.
