WITHOUT RISK, THERE IS NO REWARD
Risk is a necessary part of success, but in business, the old adage of “more risk, more reward” isn’t quite true. Your business needs to take on smart risks that make sense for the company. Dinocrates brings time-tested frameworks and processes for assessing risk to the table, delivering proven results for worry-free, sleep-filled nights.
Simply put, risk is everything. No company would exist if it wasn’t for people willing to take risks. It guides and compels us, and it is comparative to the success of any type of undertaking. With proper risk management through strategy, governance, and risk analysis, Dinocrates will help you make informed decisions and craft an approach that best suits your business goals.
How We Help
Enterprise Risk Management
Dinocrates helps enterprise organizations understand and address risk at the strategic, operational, and tactical levels, providing a thorough assessment and recommendations for action.
Risk governance services include putting the application of your frameworks in use, guided by your company’s mission, goals, personnel, and risk acceptance level.
Running afoul of Federal regulations such as FISMA (Federal Information Security Management Act ) and FITARA (Federal IT Acquisition Reform Act) is not a risk you want to take. A proper risk assessment will help ensure compliance and identify any weak spots that need to be addressed.
No one likes to share their business or personal information, nor do they want to see it taken due to a security breach. Dinocrates puts the solutions in place to protect both your bottom line and keep consumer data from prying eyes.
Information and Cybersecurity
As a technology consulting firm; Dinocrates has years of experience helping to manage the risk of our technology partners. We work in step with not only your IT department but the entire enterprise to strengthen your protections from both internal and external threats; – whether it’s an outside hacker or an unintentional employee error.
A State’s Department of Finance & Administration Division of Healthcare Finance & Administration
Dinocrates provided Federal Information Security and Privacy subject matter expertise to the state’s Medicaid Modernization Program. We defined security and privacy requirements for their RFQ for system integration efforts, including guidance on the latest IT security and privacy regulations, trends, policies, methodology, and processes related to CMS Certification and Accreditation (C&A).
Federal Civilian Agency Corporate Service Office
Dinocrates provided cybersecurity subject matter expertise to our client’s cybersecurity division. Our work included updating the IT Security Manual (ITSM) to NIST SP 800-53 Revision 4 standards, revitalizing and completing this multiple-year effort with the agency’s line offices.
Dinocrates also developed the foundation documents for the Enterprise Security Assessment and Authorization (ESAA) program, outlining cybersecurity CONOPS, the approach, and documentation for cybersecurity strategy and operations going forward. We introduced effective and comprehensive cost modeling for our client’s cybersecurity initiatives. Additionally, Dinocrates advised our client’s projects on NIST and other federal risks, and security and privacy requirements, compliance, and documentation.
In another contract with the same client, Dinocrates supported the identification of program and project management standards to be applied across all cybersecurity IT investments. We have supported the implementation and monitoring of our client’s PM standards, and supported the direct program and project management activities of several cybersecurity programs and projects including:
- Implementation of Continuous Diagnostics and Monitoring (CDM)
- Anti-Phishing and Malware Initiative
- Development of the CSD Strategic Roadmap
Dan Stevens Chief Information Security Officer (CISO) and Risk Practice Leader
Mr. Stevens is a Principal at Dinocrates and works with our clients to identify strategic, operational and tactical solutions that bridge business, people and technology.Full Biography