FireEye, Inc. announced new Cyber Risk Management Services from Mandiant. Mandiant Cyber Risk Management Services are designed to address critical business and security requirements to equip executives, boards of directors, and security and cross-functional leaders with risk-based data and advice to build effective and balanced security programs. The Cyber Risk Management Services offering incorporates Mandiant threat intelligence, incident response data, and proven risk methodologies to help organizations shine a light on where harmful risk exists. This allows business and security leaders to shift from a reactive security approach to a risk-based, informed program for better decision-making and critical asset protection. Structured as building blocks that work independently and collectively, Mandiant Cyber Risk Management Services include: Security Program Assessment – evaluate existing capabilities and maturity, coupled with an actionable improvement roadmap focused on the areas with the highest risk based on Mandiant’s frontline expertise. Crown Jewels Assessment – identify critical assets to shift security efforts and prioritize investment on the assets that matter most. Cyber Due Diligence – surface and manage inherited cyber risks outside of an organization’s control like those found in supply chain, third-party vendors, or during corporate acquisitions and divestment. Cyber Risk Operations – design and operationalize risk programs that leverage threat intelligence and frontline experience to determine custom risk profiles and tolerances, including how to best invest in security capabilities. Threat and Vulnerability Management – build and improve the capability to identify and manage specific threats with significant technology impact and vulnerability if left exposed. Threat Modeling – uncover unknown risks in both current and future state for improved planning.