[unisog] Risk Management/Assessment Software??

Stephen Taylor (ITSS) steve.taylor at auckland.ac.nz
Thu Feb 2 20:59:34 GMT 2006

We have recently evaluated such tools and decided in the end to go for
Methodware (http://www.methodware.com/)

>From our assessment it looks good - but I haven't yet used it in anger so
can't make any real recommendations either way. I was pleased that it has an
ISO17799 module.


Steve Taylor
BSc Wales, Dip. Surv. Lond., MRICS, MNZCS, CISMP
Information Security Manager
The University of Auckland
Private Bag 92019
New Zealand
+6493737599 x 86888
steve.taylor at auckland.ac.nz

-----Original Message-----
From: unisog-bounces at lists.sans.org [mailto:unisog-bounces at lists.sans.org]
On Behalf Of Martin Manjak
Sent: Friday, 3 February 2006 7:06 a.m.
To: UNIversity Security Operations Group
Subject: [unisog] Risk Management/Assessment Software??

I'm curious if anyone is using a software product at their institution
to do a formal risk assessment of their environment (asset inventory,
exposure factors, standards publishing and compliance controls, etc.). 

If so, I'd like to know what product you're using and your experience
with it.

Martin Manjak
Associate Director
ISES, Residential Network & Help Desk
Client Support Services, ITS
University at Albany 

unisog mailing list
unisog at lists.sans.org

More information about the unisog mailing list