Risk Analysis

TWM Associates, Inc. (TWM) leverages security assessment and authorizations (SA&As) with our knowledge of the Risk environment to provide a deep and effective analysis of the risks and vulnerabilities our customers face.

TWM blends traditional Certified Public Accountants (CPAs), Certified Information Systems Auditors (CISAs), Certified Information Security Managers (CISMs), Certified Information System Security Professionals (CISSPs), and Certified in the Governance of Enterprise IT (CGEITs) with security engineers specializing in Information Assurance (IA), Information Warfare, and Secure Engineering.

TWM combines this mix of certifications and expertise with our in-depth understanding of the risk environment. TWM has performed thousands of Risk Analyses, either as standalone projects, or as part of combined tasking. These have included environments as diverse as Department of Defense, Federal Government, County Government, and commercial organizations. 

TWM utilizes existing risk management frameworks implemented within the organization as well as National Institute of Standards and Technology (NIST) and other commercial best practice risk frameworks to tailor the risk analysis approach for an organization. TWM works with the customer to identify threats and vulnerabilities, and determine how those vulnerabilities can be mitigated.