Problem statement :   retail IT security services ,
                       
                      information security services and products,

                      implications financial security/indemnity as a contract

 Opportunity a:)    Further to as published and envisaged elsewhere on this URi/URL 
                                                     and in the document projects.pdf by this author.

                    most companies retial information security products usually termed fire-walls/bundled with routers,
                    anti-virus ....email scanners etc.

       
                    given the nature of these products and the virtual space in which the products and services they
                    need to offer/function....

                    eg: being or having to fight malware of virus ....their dynamic in nature ...these products and
                        services require higly previleged access to organizational IT infrastructure ...potentially
                        leaving awesome gape ....to organizational survival and credibility .

                    given the inadept or lack of awarness and projected market scope of such information security,
                    retailing or packaging such IT products ...with assured services of support from the company
                    with accessed information risk and value ...with a propositioned or propositionable market instrument
                    based financial collation ...when taking up or contracting such a product or service....

                    eg vulnerability: Access to organizational IT infrastructure on a two way https based product 
                                      updates and patch's ....to tackle virii or malware as propositioned in antivirus.

                    to date all products in this category ranging from branded to opensource are vulnerable for such a
                    exploitation.


viability :  banking/insurance ...financial industries ....scope and context of survivial market scope of provisioning
             and orchestrization of such services with financial clauses.


Opportunity b:)  most organizations have information security policy ....complying to standards.

                 ability to export the information security rules/policies implemented on IT hardware/software 

                 into a XML-compliant ...document framework ....providing scope of auditing ...as also potential automation,

                 iso/itil/itsm ...other standard frameworks enforcable [ ability to correlate or benchmark ...compliance]
                ...offers a viable option.


                 deriving from opportunity a/b ...standard auditable frame-work ...open-standards.


                 this concept can be extendable to ERP and other product...IT systems ...auditable complaince of norms like sox.


================================================================================================================================
Note: The above problem statement having been encountered in various scenarios
      and detailed in various 'Proof of concepts' as mentioned in 
      
       http://uk.geocities.com/ravivenkatus/projects.pdf
       http://ravishankarkv.tripod.com/projects.pdf
        ....apply appropriate
      'use-case' modeling, rationalize and arrive at a workable and feasible 
       solution both commercially and techinically viable.

             

           


 
             