Turn Unknowns into Action

Risk Assessments

At Filament Information Security, we understand that risk comes in many forms — from your internal systems and processes to your vendors and technology providers.

Our comprehensive risk assessment services evaluate the full spectrum of your organization’s security posture, helping you identify, prioritize, and reduce exposure before it leads to disruption.

Why Filament?

  • Nonprofit Costing: Get expert support at a lower cost from a fellow nonprofit.
  • Flexible Engagements: Schedules that fit your needs and timelines.
  • Experienced Professionals: Benefit from our team’s years of experience and industry certifications.

Practical Assessments with Actionable Results

Whether you manage on-prem systems, cloud infrastructure, or third-party dependencies, each engagement is tailored to your environment.

We focus on delivering clear, actionable results that strengthen your governance, resilience, and overall security maturity without unnecessary complexity.

 

Key Components

  • Organizational Risk Review
    Evaluate internal policies, access controls, and procedures to identify operational and governance gaps.
  • Technical Risk Analysis
    Assess networks, applications, and infrastructure for vulnerabilities, misconfigurations, or control weaknesses.
  • Vendor & Third-Party Risk
    Examine partner security practices, contracts, and service dependencies to ensure alignment with your standards.
  • Compliance Alignment
    Measure practices against frameworks such as NIST CSF, CIS Controls, HIPAA, FERPA, or ISO 27001.
  • Risk Scoring & Prioritization
    Rank findings by likelihood, impact, and business relevance to guide remediation priorities.
  • Remediation Guidance
    Receive practical recommendations for policy updates, technical improvements, or contractual safeguards.
  • Ongoing Risk Monitoring
    Establish repeatable processes and metrics to track risk trends over time.

Engagement Expectations

  • Detailed Reporting
    Receive a comprehensive report outlining identified risks, their scores, and actionable next steps.
  • Prioritized Remediation Plan
    Gain a clear roadmap to reduce high-impact risks and strengthen your overall security posture.
  • Minimal Disruptions
    Engagements are designed around your schedule and operations, ensuring assessments are thorough yet unobtrusive.

Meet the Team

Art Provost

Art Provost

Art, with 30 years of experience in Information Security across diverse roles, joined Filament in 2011 and holds multiple certifications, including CISSP, GSEC, GPEN, GWAPT, and CISM.

Tyler Malcom

Tyler Malcom

Tyler, who joined Filament in 2022, has a strong background in cyber defense and offensive operations from his time in the US Navy and holds CISSP and GSEC certifications.

Keri Kunkle

Keri Kunkle

Keri, who joined Filament in 2023, is a seasoned cybersecurity professional with experience in the US Marine Corps and Department of Defense, holding multiple certifications and advanced degrees in cybersecurity.

Learn More About Our Experts

Expert Help is On the Way

Schedule a Free Discovery Call

Explore your organization’s future with a quick conversation with Filament Information Security services.

Contact us today to learn more about how we can help you achieve your security goals.