Measuring success

"Measuring success"

Who We Are

   metriQuality prepares companies for IT audits,  collecting required documentation, and implementing controls for information security and compliance with corporate policies and regulatory requirements.

How We Help

   By monitoring what your people and processes do,
we help to ensure compliance with corporate policies and regulatory requirements.

   By measuring resource utilization:

  Are your people working effectively?
  Are your projects and/or vendors delivering the results you expect?

What We Do

Policy Management   Write and review company policies and procedures

Compliance Controls   Monitor, assess, and improve compliance controls

Performance Management   Optimize business operations through performance audits

Security Awareness Training   Train and mentor staff for compliance and information security issues

Vendor Risk Management   Manage outsourced IT projects and third-party service providers

Vulnerability Assessments   Conduct security  assessments and  minimize risk exposure

Corporate Standards   Align corporate standards with generally accepted standards

Incident Response   Plan, coordinate, and respond to security incidents

 

ISACA

    As an independent, nonprofit, global association, ISACA, previously known as the Information Systems Audit and Control Association, provides practical guidance, benchmarks and other effective tools for all enterprises that use information systems.

Why is this important to you?

metriQuality uses ISACA's tools and resources to provide what auditors are looking for, and reduces the cost of compliance by leveraging common controls for multiple compliance mandates.

    ISACA is the leading global advocate for information systems security and cybersecurity, audit, assurance, risk, privacy and governance professionals. This includes working with government, non-profit and commercial enterprises from around the world to:

  • Develop, share and serve as a trusted source of knowledge, standards, networking and career development
  • Support and assist in the development of government and regulatory frameworks and guidance aimed at addressing significant business issues and trends
  • Demonstrate how ISACA members and certifieds contribute to organizational success
  • Fill professional skill and knowledge gaps

   Here's one example of what ISACA members contribute to metriQuality's practice:

Who Owns Loss Owns Risk
 By Jack Freund, Ph.D., CISA, CISM, CRISC

 Identifying risk ownership may appear straightforward, but it is important to that ensure it has been assigned to the correct individual. Too often, any risk having to do with IT is assigned to someone in the IT function. Unfortunately, the impact of the loss is not felt by anyone in IT. The following adage is useful for identifying the real risk owner: Who owns loss owns risk.

   Read the full article at the ISACA website here.