avedos IT-Rating Software nach Basel II Richtlinen

Short Facts - avedos™ risk2value® in IT Risk Management 

avedos™ risk2value® is a software solution for the management and the evaluation of IT risk following official standards and supports diverse certification activities of its customers next to the classic Risk Management tasks.

For the first time risk2value® offers the possibility to visualise IT risks for various interest groups in different ways. This offers the possibility to analyse the results of risk evaluation for IT technicians on a very technical and detailed level. The same evaluation, as an example, can provide the IT manager with information about which IT areas hold high risk potential, while the CEO may prefer the strongest form of information compression: the representation of the current risk situation of the total IT in official rating categories (e.g. BBB).

• avedos™ risk2value® allows IT Risk Management according to official Basel II directives and supports activities in the fields of IT Governance, Sarbanes Oxley, and other official bodies of regulations. 
• avedos™ applies methods and approaches of the following standards in risk2value® IT Risk Management:
• ISO 17799 / BS7799 => ISO norm for information security 
• COBIT IT process model 
• German IT Basline Protection Manual 
• Various sets of quantitative figures
• Further standards are in preparation 
• avedos™ risk2value® visualises the IT risk in different ways according to user group 
• For IT technicians: representation of singular weaknesses and visualisation of risk profiles in order to deduct activity plans 
• For CIOs / IT managers: risk representation according to IT fields in order to identify which of these fields (e.g. Messaging field) feature a higher risk than others 
• For CEOs / Controllers: evaluation of IT systems according to official rating categories (e.g. AAA to CCC) 
• For Basel II representatives: representation of relevant risk information in the structuring that Basel II purports for the measuring and handling of operational risks. Calculation of necessary capital resources for the corresponding risk factors according to the Value-at-Risk principle, following the Basel II calculation methods. 
• For Compliance Managers: Integration of corresponding control questions, catalogue of risks and measures, and procedure models of different IT standards. Because of the generic conception of the application the integration of new standards is possible at any time.
  

Further Information can be found in the risk2value® product sheet