A holistic, technology-independent approach to risk management developed since 2004
From concept to industry-proven framework, FoRMA has been refined through real-world applications
Initial development of the FoRMA framework begins
Presented at SecureForum in San Jose, California
Framework presented to Lockheed Martin
Applied across Seagate Technologies, Latus Solutions, Take2, and more
A comprehensive framework designed to transform how organizations approach risk management
FoRMA will help to provide a holistic vision and strategic understanding of the relationships of many of our current and familiar security models.
FoRMA is flexible and can be applied to information security, physical security, even medical risk management.
FoRMA will demonstrate how to achieve business objectives by controlling risk to acceptable levels, not by maximizing security.
A proven model focusing on balance and appropriate control
Click on each element to explore how FoRMA addresses risk and control
Control risks within acceptable limits to support business objectives
Define relevant policies, standards and best-practices
Protect assets and resources in accordance with policy
Detect policy violations
Assure policy compliance
Start from the ground level and work your way up!
Construct a strong security foundation to build your security policies, standards and best-practices. Use industry established security methodologies and codes of best practice to guide your standards and practices.
A security foundation supporting all IT layers (including information, infrastructure, application, etc), and addressing each security implementation phase (Awareness, Protection, Detection, and Assurance).
FoRMA is a core component of the Cybernetix and CyberAlchemy ecosystems, bringing together decades of risk management expertise with cutting-edge security frameworks.
Stay tuned for more tools and resources from the framework