Duty of Care Risk Assessment (DoCRA)

My organization wants to perform a risk assessment based on duty of care (DoCRA) or CIS RAM

Duty of Care Risk Assessment (DoCRA). Whether you want to implement CIS controls or harmonize with other control sets (PCI, NIST, ISO, etc.), CIS RAM’s duty of care based risk assessment process is easy to adopt and holds up to the scrutiny of regulators, attorneys, and executive management.

download CIS RAM

Getting Started

If you have read through the CIS RAM or CIS RAM Express and are ready to begin your DoCRA duty of care risk assessment, you have some choices;

  • perform it on your own or
  • get help from a professional services organization steeped in the method, with hundreds of successful implementations.

Contact Us