Linus OptimIS

Answer the big questions:

How much security is enough?
Are current or proposed controls adequate?
What are the exposures in simple business terms?
What are the most cost-effective controls?
How do you prepare a business case to support new controls?
How do you simply and consistently manage security risk across the organisation?
How do you pass security audits with minimal effort?

Linus OptimIS Finding the right balance is essential for a successful security solution – why build Fort Knox if you are not protecting gold? OptimIS is a data gathering and analysis tool based on the proven Linus Optimal Information Security (LOIS) Methodology that: identifies the sensitivity of the information to be protected and how that information will be accessed determines the most cost-effective controls to reduce risks to acceptable levels. The Linus ISM Methodology Framework The focus at all times is on pragmatic cost-effective solutions that will have the minimal impact on existing operations. Controls are assessed holistically, ensuring that additional controls are only established where absolutely necessary. OptimIS outputs are fed directly into the systems development process and the ongoing management of Information Security within the organisation. As the organisation grows or new projects are established, the OptimIS database grows with you, dramatically simplifying the ISM process and ensuring security is always “Optimal”. Usability Simple navigation via traditional menu, toolbar or icon interface Logical process centric structure Multi-screen support – great for workshops Filtering, pulldown lists, radio buttons, shortcuts and many more editing ai Platform Portable, minimal footprint Networkable MS Access Jet database (no licence required – free runtime included) Licensing Manage multiple databases or clients with a single licence Add additional licences as required Rolling price discount and Corporate pricing for unlimited users Support Complete Methodology and Technical Support. Support web site with FAQs, latest downloads and more. Comprehensive consultancy support for all ISM stages OptimIS in Action OptimIS has been used in numerous commercial and government organisations to define the right security balance. Key successes include: saving of millions of dollars in a government organisation by determining a more cost-effective solution resolving stalemates in several IT projects between business and IT stakeholders identifying a non-IT security control to resolve a major security exposure at no cost to the project defending security decisions against unbalanced audit recommendations establishing a successful business case to purchase required security technologies conducting risk assessments on established systems, identifying any gaps and enabling limited resources to focus on critical areas only.		Key Features Data Sensitivity Analysis and Classification Data categories, confidentiality, integrity and accountability ratings
		Security Environment Analysis Organisation information, roles, access locations, nature of access, when, media and applications
		Controls Controls, control layers, strengths and effectiveness
		Residual Exposure Effectiveness of current and proposed controls for each data category
		Analysis Reports Sensitivity, access environment, control and item storage reports
		Data Storage and Retention Data ownership and Retention periods
		Maintenance Preferred options, definitions and configuration
		Included Optimis comes with a: Comprehensive 50 page User Reference Guide Demonstration database for learning and experimenting. Methodology guidelines are available separately. Contact us for an obligation free demonstration.