Educause Security Discussion mailing list archives

Re: Risk Assessment vendor recommendation?

From: David D Grisham <DGrisham () SALUD UNM EDU>
Date: Wed, 24 Jan 2018 20:41:41 +0000

We've had great results with Clifton Larson Allen (CLA) for both general security assessments and HIPAA risk 
assessments.
Cheers.-grish David Grisham
David Grisham, PhD, CISM, CRISC
933 Bradbury Drive SE, Suite 3131
Manager, Cybersecurity, UNM Hospitals, UNM Health Science Center
505.272.5657 my email Dgrisham () salud UNM edu<mailto:Dgrisham () salud UNM edu>
DO NOT provide your username, password, or any personal information in any email.
UNMH WILL NEVER ask you for your username or password via email.
DO NOT CLICK links or attachments unless you are positive the content is safe.



From: The EDUCAUSE Security Constituent Group Listserv [mailto:SECURITY () LISTSERV EDUCAUSE EDU] On Behalf Of Hassler, 
Karl D.
Sent: Wednesday, January 24, 2018 1:19 PM
To: SECURITY () LISTSERV EDUCAUSE EDU
Subject: [SECURITY] Risk Assessment vendor recommendation?

I'm looking for recommendations for a consultancy to do a general IT risk assessment/security review.  Any suggestions 
or comments are welcome and why, or why you wouldn't recommend them.
Thanks!

Karl Hassler, CISSP
Director,  IT Security Policy & Compliance
302-831-3750
302-489-9788

Current thread:

Risk Assessment vendor recommendation? Hassler, Karl D. (Jan 24)
- Re: Risk Assessment vendor recommendation? David D Grisham (Jan 24)
- Re: Risk Assessment vendor recommendation? Ray Phillips (Jan 25)
- <Possible follow-ups>
- Re: Risk Assessment vendor recommendation? David Stack (Jan 24)
- Re: Risk Assessment vendor recommendation? Jeff Gassaway (Jan 24)