It starts with a gap analysis - we meet with staff and review existing documentation.
Our plans are discussed and coordinated with you onsite staff.
Our scans are scheduled against identified assets for an approved time and date.
We create a repeatable process to identify, classify, and either remediate or mitigate vulnerabilities.
The details of the results are provided and discussed.
We collaborate with you to understand your priorities and what we can do to help next.
We act upon our joint-action plan - implementing security technologies, processes, or coordinating other remediation activities.
Re-testing of the control environment.
SCMS mitigates system risks and vulnerabilities that lead to data breaches.