1 / 25

CounterMeasures™ Risk Analysis Software

CounterMeasures™ Risk Analysis Software. www.countermeasures.com www.alionscience.com. Company Biography. Alion is an employee-owned technology solutions company headquartered in Northern Virginia

chase-carson
Download Presentation

CounterMeasures™ Risk Analysis Software

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. CounterMeasures™ Risk Analysis Software www.countermeasures.com www.alionscience.com

  2. Company Biography • Alion is an employee-owned technology solutions company headquartered in Northern Virginia • Five years old with 70 plus years heritage as a Illinois Institute of Technology Research Institute (IITRI) focused on support to DoD • Alion’s revenue is $850M/year with 3800 employee owners • Core Business Areas: • Defense Operations • Modeling & Simulation • Wireless Communication • Industrial Technology • Chemical, Biological, Nuclear & Environmental Sciences • Information Technology • Naval Architecture & Marine Engineering

  3. Decision Support Focus and Tools • General focus – Planning, Resource management, System Stress and Risk • Shrink wrapped to Contractor deployed and operated • Tool Set includes: • CounterMeasures – Risk assessment and management • VI2SA (Visual Interactive Investment Strategy Analysis) - Portfolio, investment analysis, supply chain and operational risk • MOBSIM/Simviewer _ Transportation planning • PRAS (Predictive Readiness Assessment System)- System stress management • Vector Suite – Crisis planning and exercise suite • CPR (Crisis Planning and response) – response management and planning system, • Customization of system(s) to customer environment

  4. CounterMeasures Pedigree • Origin was 1985 Navy risk methodology • Initial focus was shrink wrapped product for IT assessments • Alion/IITRI partnership dates from 1997, acquired in 2002 • Antiterrorism effort initiated with TSA requested assessment of 11 largest airports immediately after 9/11 • Domain applications include: Federal (DoD, DOE, DOS), State (NJ, WI), Local (Washington DC), schools, ports, banks, oil and chemical industry • DHS connections - CEDAP grant program, automation of DHS’s RAMCAP methodology • Scope of deployments - $4K to multimillion dollar enterprise deployment with oracle based desk top management at all levels (US Army)

  5. CounterMeasures™ Overview

  6. Role-based, context sensitive automated survey Automated Analysis Module 1. System Characterization 7. Risk Determination 2. Threat Identification 6. Impact Analysis 3. Vulnerability Identification 8. Control Recommendation 4. Control Analysis 9. Results Documentation 5. Likelihood Determination CounterMeasures™ Overview

  7. Web Based Training Custom Reporting Custom Security Risk Assessment Software Case Study #1: New Jersey Treasury/State Police

  8. 100% Web Deployment Fuse DIA Threat Data Case Study #2 OUSD(I) CI&S

  9. Automatically Generate DA Form 2806-1-E Custom Methodology Data Warehouse and Visualization Case Study #3 U.S. Army OPMG

  10. Case Study #3 U.S. Army OPMG Filter and search results Updated Graph Underlying Data

  11. Case Study #3 U.S. Army OPMG Multiple Graph Formats Accompanying Legend

  12. Case Study #3 U.S. Army OPMG Totals reflect results per filter criteria Detailed Remediation Cost Information

  13. Case Study #3 U.S. Army OPMG Interactive Geospatial Page “Drill down” by clicking on installation icon

  14. Support recommendations for updates to regulations and legislation Data Warehousing/Trend Analysis Conduct/facilitate logistics chain assessments Case Study #4 TSA Air Cargo

  15. Automate existing organizational report IT Security/Governance Case Study #5 FDIC

  16. Respondent – Who’s taking the survey? System environment – what are the characteristics of the system? What type of function does the system serve? Selections are tailored to the customer’s needs System Characterization

  17. Survey respondent selects which assets the organization wishes to measure risk to and how valuable those assets are Vulnerability Identification • Vulnerabilities are associated with assets – they are inherent properties of assets

  18. Threat Identification and Likelihood Determination How frequently does a threat manifest itself? To what extent will a threat exploit a vulnerability?

  19. Control Analysis How well has the organization implemented the countermeasures? What countermeasures are in-place?

  20. Impact Analysis What’s the organization’s posture?

  21. Control Recommendation How can we improve the organization’s posture?

  22. Risk Determination How much risk is my organization experiencing?

  23. Risk Determination How can I measure my organization’s compliance?

  24. Risk Management How do I manage the implementation of my recommendations?

  25. Conclusion/Questions Caleb Jones Alion Science and Technology 703.998.1630 CLJones@AlionScience.com Risk_mgt@AlionScience.com www.CounterMeasures.com

More Related