Security Risk Assessment Framework (SRAF)

Based on the National Institutes of Science & Technology (NIST) Cybersecurity Framework, the PLEX SRAF enables organizations to apply the principles and best practices of risk management to improving the security and resilience of critical infrastructure. The SRAF provides order and arrangement to today’s multiple approaches to cybersecurity by assembling standards, guidelines, and practices that are working effectively in industry today.


Ensure You Are NIST 800-171 Compliant
The National Institute of Standards and Technology (“NIST”) finalized the guidance for federal agencies to ensure sensitive information remains confidential when stored outside of federal systems. PLEX systems has extensive experience with helping organizations assess their 800-171 compliance and build a roadmap to meet the 800-171 security requirements.

NIST Cybersecurity Framework (CSF)
Based on the National Institutes of Science & Technology (NIST) Cyber Security Framework (CSF), the PLEX SRAF enables organizations to apply the principles and best practices of risk management to improve the security and resilience of their critical information systems. The SRAF provides a framework with which to order and arrange today’s multiple approaches to cybersecurity by assembling standards, guidelines and practices that work effectively in industry today.

HIPAA Compliance
PLEX Solutions can help assess, remediate and maintain HIPAA compliance. We scan the network for vulnerabilities and security flaws to ensure that patience records are properly protected. We also check your organization’s wireless networks for security to make sure there isn’t a way for attackers to maintain access to patient records.


Security Program Development
Security vendors are in business to sell their products. PLEX Solutions takes a vendor agnostic approach to building your security program that first seeks to understand your business and your goals. Then we recommend processes, procedures and technologies to protect it.

Chief Information Security Officer (CISO) On Demand
With limited IT budgets and headcounts, having a dedicated, experienced professional to advise on cybersecurity is a luxury many organizations can’t afford. PLEX offers a CISO On Demand service that allows you to leverage the expertise of its world-class cyber experts on a retainer / as-needed basis.

Security Policy Development
Although most organizations have several solutions in place to address their perceived security issues (firewalls, anti-virus, etc.), few have written policies and procedures explaining what their security goals are or what’s expected from their employees. By partnering with PLEX your organization can build a coherent approach to security starting with a security policy and supporting procedures.