The aim of the assessment is to identify all risks across the entire IT landscape. This includes both the technical and organizational aspects of your IT services. It is therefore very suitable for gaining an initial overview and identifying critical areas for suitable countermeasures or in-depth investigation.
A typical assessment takes about 10 person days. A large portion of this time is spent obtaining information by studying documents, and conducting interviews and vulnerability scans to identify weak points.
In the final analysis, a risk profile is drawn up and documented in such a way that clients know their strengths and weaknesses and can prioritize measures to reduce risk.