Educause Security Discussion mailing list archives

Re: Risk Assessment vendor recommendation?

From: Ray Phillips <phillips () UMN EDU>
Date: Thu, 25 Jan 2018 08:07:55 -0600

Hi,

University of Minnesota has worked with BerryDunn over a couple of years to
conduct ISO-based risk assessments for units and IT services and have been
impressed with their understanding of higher ed as well as adaptability.
Please contact me if you would like more info.

Ray Phillips

On Wed, Jan 24, 2018 at 2:19 PM, Hassler, Karl D. <khassler () udel edu> wrote:

I’m looking for recommendations for a consultancy to do a general IT risk
assessment/security review.  Any suggestions or comments are welcome and
why, or why you wouldn’t recommend them.

Thanks!



Karl Hassler, CISSP

Director,  IT Security Policy & Compliance

302-831-3750 <(302)%20831-3750>

302-489-9788 <(302)%20489-9788>




-- 
Ray Phillips, CISA | Security Risk Analyst
University Information Security | University of Minnesota
*web page  *Practices for the Information Security Policy
<http://it.umn.edu/practices-information-security-policy>
*email*  phillips () umn edu
*phone* 612.626.0568 | *fax* 612.625.8951
*mail  *  Room 30 Telecom Bldg | 0322 | 90 Church Street SE | Mpls, MN 55455
           Office of Information Technology, Delivery Code 0322A

Current thread:

Risk Assessment vendor recommendation? Hassler, Karl D. (Jan 24)
- Re: Risk Assessment vendor recommendation? David D Grisham (Jan 24)
- Re: Risk Assessment vendor recommendation? Ray Phillips (Jan 25)
- <Possible follow-ups>
- Re: Risk Assessment vendor recommendation? David Stack (Jan 24)
- Re: Risk Assessment vendor recommendation? Jeff Gassaway (Jan 24)