CRFQ Solutions

CRFQ offers holistic services and product sets architected to complement the needs of security programs of any size or maturity level.

Service Offerings

Tactical Advisory

  • Customized evaluation, selection and implementation recommendations for a Cyber-Risk Quantification (CRQ) platform solution based upon the needs of your business.

  • Bespoke evaulation and recommendation for operational deployment or enhancement of your in-place Cyber-Risk Quantification (CRQ) platform.

  • Customized evaluation, selection and implementation recommendations for a Third-Party Risk Management (TPRM) platform solution based upon the needs of your business.

  • Customized evaluation, selection and implementation recommendations for an Insider-Risk Management platform solution based upon the needs of your business.

  • Customized evaluation, selection and implementation recommendations for an AI Cyber-Risk Management platform solution based upon the needs of your business.

  • Customized development and delivery of tabletop adversary simulation exercises developed against your organization’s systems and procedures.

Strategic Advisory

  • Bespoke program design an consultation with your security leadership to define the needs of the organization.

  • Evaluation, Assessment, Alignment and Implemetation of your Third-Party Risk Management strategy program.

  • Evaluation, Assessment, Alignment and Implemetation of your Insider Risk Management strategy program.

  • Evaluation, Assessment, Alignment and Implemetation of your AI Risk Management strategy program.

  • Evaluation of your holistic security posture through the lens of human behavior and delivery of recommendations for process streamlining.

  • Utilization of any-or-all of the practice areas listed above to assess, align and implement positive change to your security program in-partnership with security leadership.

Training Services

  • Training sessions developed in concert with your security team to educate your leaders and board on Cyber Risk Management and Security Industry Best-Practices

  • Whether private-training for your CISO or broader sessions for your entire C-Suite, CRFQ has customizable curricula suited for expert-level understanding of Cyber-Risk Quantification principles and processes.

  • CRFQ has customizable curricula suited for expert-level understanding of Cyber-Risk Quantification principles and processes for your Audit Committee.

Product Offerings

We are proud to partner with industry-leading platform vendors as well as to provide our own proprietary research and data-feeds.

  • CRFQ OPTIXX

    CRFQ OPTIXX is our proprietary research and data-feed practice encompassing:

    • Research Notes

      • CRQ Adoption and Usage

      • Insider Risk and CRQ

      • NotPetya - A CRQ Perspective

      • Change Health - A CRQ Perspective

    • Data Services

      • Insider Risk Data Set

      • Board Reporting - Cyber Ledger and ERM Connector

  • CRFQ Platform Partners

    CRFQ has partnered with multiple industry-leading platform providers in the CRQ, Controls Framework Continuous Monitoring, Third-Party Risk Management, Insider Risk, Materiality Incident Management and Adversary Simulation & Emulation.

    We are also proud to partner with leading providers of CRQ Industry Datasets to provide immediate insight to your inbox as you need it.

    As part of our services engagements we are proud to recommend and implement the best platform for your needs.

Book a Consultation