• Home
• Benefits
  • Better
    • Defensible Decisions
    • Holistic Approach
    • Architectural Focus
    • Determine ROI
    • Communication
    • Optimize Risk
    • Due Diligence
  • Faster
  • Cheaper
• Risk Modeling
  • Methodology
    • Premise
    • Attack Tree Analysis
    • Advantages
  • Software
  • FAQ
• Demos
• Documents
  • Documents
  • Tutorial
  • Links
• Software Trial
• U.S. Gov't & Defense
  • GSA
  • NCAGE / CCR
  • National Stock Numbers
  • Sensitive Environments
• Company Info
• Contact Us

SecurITree: the hostile risk modeling software that

• Predicts your enemy's behavior using objective, quantified parameters
• Identifies which vulnerabilities require mitigation and which do not
• Validates that proposed countermeasures will be effective (and cost effective)
• Facilitates communication with non-technical decision makers
• Is holistic -- analyzes physical and information technology risks
• Demonstrates due diligence and compliance with security regulatory standards

Incident Risk ≡ Incident Probability × Incident Impact

Many organizations are now required to demonstrate their commitment to security through compliance with regulatory standards. Most of these standards (e.g., ISO17799) demand that you know if and how you will be attacked, and what the impact will be to you. Unfortunately, the standards typically provide little or no guidance as to how you might predict these factors.

General purpose risk analysis technologies rely on checklists and statistics - neither of which are effective for understanding hostile threats. In today's world the capability and motivation of adversaries can change quickly, leading to unprecedented, high impact attacks that are not predicted by statistics. Conventional analysis techniques, many of which are based on general purpose checklists, deliver vague and difficult to understand reports. Minor changes in the threatscape often require huge amounts of work to repeat the analysis.

Amenaza's revolutionary capabilities-based, attack tree analysis software, SecurITree, accurately predicts how your adversaries will behave against your specific system. Attack trees provide an effective communications bridge between regulators, management and technical specialists. Each level is provided with the level of detail they require to make their decisions.

SecurITree is used by leading organizations involved in a broad variety of disciplines ranging from information technology to physical security. Amenaza's customers include defense and intelligence organizations, health care providers, critical infrastructure companies, aerospace manufacturers, financial organizations, laboratories, consulting companies and progressive Fortune 1000 clients. Throw away your obsolete hostile risk analysis methodologies and model the future of your security.         Tell me more...

Think like an attacker! Think SecurITree!