Security Risk Assessments - You Don't Know What You Don't Know

Articles
July 15, 2021

Threat, vulnerability, likelihood, consequence, and risk. For those operating in today’s business environment several of these are a moving target.  While we often think we understand the threats our corporations or private families face, and we believe (or should know) that our countermeasures will thwart any attempts by adversaries to penetrate those defenses – the reality is, you don’t know what you don’t know.When was the last time you commissioned an independent third-party to conduct a risk assessment for your corporation, private family, or family office?  One year ago? Five? What has changed since that last assessment? Geopolitical winds have shifted, a global pandemic has upended supply chains and travel, and social unrest has created new menacing threats, highlighted expanding cyber vulnerabilities, and blown holes in our once-sound security policies and procedures. Do you feel like your last assessment is still valid among all those changes?Especially today, after many employees now work from everywhere. The risks to them in their specific location and the increase in cyber vulnerabilities by working away from the office are significant. Companies must work to strike the balance among policies, procedures, and privacy. To inform this balance, reassessments of vulnerability are critical as now many of the inherent protections at the office (guards, gates, access controls, video, and intrusion systems) are no longer present in employees’ homes (or wherever they are working).For those that have never completed an assessment, the compliance and governance environment should be driving you to do this key task now. Why wait? If one has never looked for threats, identified vulnerabilities, or assessed risk -  you truly are in the dark with regard to not only what might happen tactically, for example, a tornado hitting the office building, an active shooter, or a ransomware attack – but you are even more unaware of the strategic impact by omitting this risk management tool from your list of annual reviews. And, if you are reading this article – now you know. You know more now than you did five minutes ago… and you know you are at risk.  Because when it comes to security risk assessments, you don’t know what you don’t know, especially if you have never bothered to look.How exposed is the enterprise? The Family Office? The CEO’s second home, or their travel arrangements? Is the network, or his/her devices protected against current threats?  How would you know? By completing a security risk assessment, that’s how. Hire a professional company that completes this work as an independent third-party security consultant. Red Five has been doing this work for 17 years, conducts this work consistently, with professionals, and provides actionable results, so that you can take away the unknown risks…and know what you didn’t know.

Subscribe for Cutting-Edge Security Insights!

Get the latest news, expert insights, and exclusive updates right in your inbox.

By clicking Sign Up you're confirming that you agree with our Terms and Conditions.
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.

Related Posts

Cyber Security

Actions to Counteract Russian Cyber Retaliations

The Russian invasion of Ukraine could lead to involvement from NATO, U.S. troops and advisors. This involvement could end badly with the Russians seeking ways to retaliate against intervening nations. One likely response to a Russia-U.S. standoff over Ukraine is cyber-attacks committed by Russian-backed hackers against a wide range of U.S. targets, to include commercial, financial, and government entities. Cyber-attacks like these can be multi-pronged, widespread, and have catastrophic impact on their primary targets along with secondary and tertiary fall-out.
February 23, 2022
FBI Director Christopher Wray testifies on Capitol Hill on April 27 / Alex Wong / Getty Images
Cyber Security

Wray's Warning: Chinese Malign Cyber Activity Targeting US Corporations and Critical Infrastructure

FBI Director Christopher Wray’s January 2024 address to the House Select Committee on the Chinese Communist Party (CCP) highlighted the relentless pursuit by the CCP to target the US economy and critical infrastructure sectors nationwide.
August 30, 2024

Three Reasons Access Control Is Critical for Corporate Security

Corporate Security is increasingly becoming top of mind. At the center of any Corporate Security strategy is Access Control. Review your access control strategy.
June 23, 2022

Let's discuss your security.

Partner with Red5 for unmatched intelligence and analysis expertise tailored to your needs.