Duty of Care Risk Assessment (DoCRA). Whether you want to implement CIS controls or harmonize with other control sets (PCI, NIST, ISO, etc.), CIS RAM’s duty of care based risk assessment process is easy to adopt and holds up to the scrutiny of regulators, attorneys, and executive management.

Reasonable Security download CIS RAM

Getting Started

If you have read through the CIS RAM or CIS RAM Express and are ready to begin your DoCRA duty of care risk assessment, you have some choices;

  • perform it on your own or
  • get help from a professional services organization steeped in the method, with hundreds of successful implementations.

HALOCK partners with you to establish reasonable security controls based on your organization’s mission, objectives, and obligations.

Contact Us