InfoSec Team Building

This service is designed for organizations that have a functioning information security management structure, and, like most organizations, would improve if focus could remain on organizational goals. It requires a full day with the team where there are minimal distractions (i.e. preferably off-site).

In advance of the event:

  1. management must fill out goals and objectives questionaire in advance of the event
  2. all participants must fill out questionaires on personalities via industry standard methods in advance of the event
All pre-event activities are expected to take 15 minutes per person per activity.

At the event, there is:

  1. public reaffirmation of individual and team roles and responsibilities
  2. identification of critical dependencies outside of the team and corresponding weaknesses which results if they are not met
  3. identification of organizations that regard the team as critical security support
  4. table-top exercise to identify working versus suffering control points both within the team and across organizational interdependencies
  5. gap analysis between team activities (including organizational dependencies) and organizational goals
  6. identifying proactive activities the team can make to either improve coordination or cooperation with other groups
  7. identifying new metrics that will demonstrate whether or not the newly developed activites are achieving goals
These engagements may also include a three, six, and/or twelve month follow-up to determine whether identified proactive activities were successful.




Home