• Home
  • Consultancy
  • Training
  • Products
  • Events
  • Case Studies
  • About us
Home

URM's Software Asset Management Methodology

URM's approach to SAM compliance and certification is built on the need to avoid solutions that are over-engineered, expensive, time consuming and bureaucratic.

The starting point for any SAM project is, therefore, to carry out a software risk assessment, based on ISO 19770-1 using URM's market leading risk assessment software. The SAM risk assessment takes just a few days to complete. Completing a risk assessment ensures that the actual requirements of an organisation are identified rather than those that are perceived, and/or either over and under specified. The risk assessment provides an excellent opportunity to engage everyone in an organisation who has a key role to play in SAM compliance, including executive officers.

The results of the risk assessment are used to highlight areas of SAM risk, calibrate the extent of the risks and identify controls from ISO 19770-1 that can be used to prioritise and facilitate risk reduction.

The reports from the SAM risk assessment are clear, comprehensive and explicitly address the needs of the business.

URM's experience in delivering pragmatic and effective corporate governance consultancy, built upon the sound principles of risk assessment, has allowed it to rapidly develop services relating to SAM and ISO 19770-1. The benefits of adopting a risk based approach, as opposed to a more generic and less focussed gap analysis methodology, are significant. Customers, for an investment of just a few days effort themselves, can obtain a highly customised view of the SAM risks they face, who should own responsibility for risk reduction and how to prioritise risk reduction effort. Prioritisation is extremely important as organisations will still have many "business as usual" activities to contend with alongside its SAM risk reduction programme.

Embracing SAM in any organisation offers opportunities for better control of costs throughout the software life cycle, achieving competitive advantage and improved customer satisfaction, and greater work place efficiency.

  • Consultancy Introduction
  • Information Security (ISO 27001)
    • Information Security (ISO 27001)
    • Relationship between ISO 27002 & ISO 27001
    • How to Comply with ISO 27002 or Certify to ISO 27001
    • ISO 27001 Awareness Training
    • ISO 27001 Case Studies
  • Information Security (PCI DSS)
    • Information Security (PCI DSS)
    • Stages of Compliance to PCI-DSS
  • Information Security (DMA DataSeal)
  • Business Continuity Management (BS 25999)
    • Business Continuity Management (BS 25999)
    • Significance of BS 25999
    • How to deploy BS 25999 - Lifecycle Stages
    • Crisis Management Simulation Exercises
    • New ISO Standard for BCM - ISO 22301
  • IT Service Management (ITIL & ISO 20000)
    • IT Service Management (ITIL & ISO 20000)
    • Significance of ITIL & ISO 20000
    • How to deploy ITIL or certify with ISO 20000
  • Data Protection
    • Data Protection - Introduction
    • URM's approach to Data Protection
    • BS 10012 - New DPA Standard
  • Information Risk Management
    • Information Risk Management
    • URM's approach to Information Risk Management
  • Software Asset Management
    • Software Asset Management
    • URM's approach to Software Asset Management
  • Polices & Procedures
    • Polices & Procedures
    • URM's approach to Polices & Procedures

Copyright © Ultima Risk Management, 2010. All Rights Reserved

  • contact us
  • careers
  • terms of use
  • privacy
  • site map