WITHOUT RISK, THERE IS NO REWARD

Risk is a necessary part of success, but in business, the old adage of “more risk, more reward” isn’t quite true. Your business needs to take on smart risks that make sense for the company. Dinocrates brings time-tested frameworks and processes for assessing risk to the table, delivering proven results for worry-free, sleep-filled nights.

Our Philosophy

Simply put, risk is everything. No company would exist if it wasn’t for people willing to take risks. It guides and compels us, and it is comparative to the success of any type of undertaking. With proper risk management through strategy, governance, and risk analysis, Dinocrates will help you make informed decisions and craft an approach that best suits your business goals.

How We Help

Enterprise Risk Management

Dinocrates helps enterprise organizations understand and address risk at the strategic, operational, and tactical levels, providing a thorough assessment and recommendations for action.

Governance

Risk governance services include putting the application of your frameworks in use, guided by your company’s mission, goals, personnel, and risk acceptance level.

Compliance

Running afoul of Federal regulations such as FISMA (Federal Information Security Management Act ) and FITARA (Federal IT Acquisition Reform Act) is not a risk you want to take. A proper risk assessment will help ensure compliance and identify any weak spots that need to be addressed.

Privacy

No one likes to share their business or personal information, nor do they want to see it taken due to a security breach. Dinocrates puts the solutions in place to protect both your bottom line and keep consumer data from prying eyes.

Information and Cybersecurity

As a technology consulting firm; Dinocrates has years of experience helping to manage the risk of our technology partners. We work in step with not only your IT department but the entire enterprise to strengthen your protections from both internal and external threats; – whether it’s an outside hacker or an unintentional employee error.

CLIENT RESULTS

A State’s Department of Finance & Administration Division of Healthcare Finance & Administration

Dinocrates provided Federal Information Security and Privacy subject matter expertise to the state’s Medicaid Modernization Program. We defined security and privacy requirements for their RFQ for system integration efforts, including guidance on the latest IT security and privacy regulations, trends, policies, methodology, and processes related to CMS Certification and Accreditation (C&A).

 

Federal Civilian Agency Corporate Service Office

Dinocrates provided cybersecurity subject matter expertise to our client’s cybersecurity division. Our work included updating the IT Security Manual (ITSM) to NIST SP 800-53 Revision 4 standards, revitalizing and completing this multiple-year effort with the agency’s line offices.

Dinocrates also developed the foundation documents for the Enterprise Security Assessment and Authorization (ESAA) program, outlining cybersecurity CONOPS, the approach, and documentation for cybersecurity strategy and operations going forward. We introduced effective and comprehensive cost modeling for our client’s cybersecurity initiatives. Additionally, Dinocrates advised our client’s projects on NIST and other federal risks, and security and privacy requirements, compliance, and documentation.

In another contract with the same client, Dinocrates supported the identification of program and project management standards to be applied across all cybersecurity IT investments. We have supported the implementation and monitoring of our client’s PM standards, and supported the direct program and project management activities of several cybersecurity programs and projects including:

  • Implementation of Continuous Diagnostics and Monitoring (CDM)
  • Anti-Phishing and Malware Initiative
  • Development of the CSD Strategic Roadmap

Dan Stevens Chief Information Security Officer (CISO) and Risk Practice Leader

Mr. Stevens is a Principal at Dinocrates and works with our clients to identify strategic, operational and tactical solutions that bridge business, people and technology.

Full Biography