- Contact Us
-
Choose Country...
Global- View All
Africa
South Africa
Albania
Australia
Austria
Belgium
Bosnia Herzegovina
Bulgaria
Canada
Canada FR
Croatia
Czech Republic
Denmark
Estonia
Finland 
Finland (English)
France
Germany
Hong Kong
Hungary
Iceland
India
Indonesia
Ireland
Israel
Italy
Kosovo
Latvia
Lithuania
Malaysia
Middle East
Montenegro
Netherlands
New Zealand
North Macedonia
Norway
Philippines
Poland
Portugal
Romania
Saudi Arabia
Serbia
Singapore
Slovakia
Slovenija
Spain
Sweden
Switzerland DE
Switzerland FR
Thailand
Turkey
USA
Ukraine- United Kingdom
Vietnam
-
How to Conduct Risk Assessment
Below are the three high-level steps for conducting the Risk Assessment for a customer or prospect.
Step 1: Pre-Execution
-
Customer/prospect environment preparation/creation
Work with either existing customers or new prospects to explain the value of the assessment, validate pre-requisites, confirm readiness of environment for the assessment, and submit POC request (either Tanium Cloud or on-prem).
-
Conduct a pre-assessment call with the customer or prospect to discuss expectations and requirements
- All prospects and existing customers eligible across all verticals and segments
- Minimum of 500 endpoints (5000 MUCH better)
- Include your PTSE or TSE
-
Spin up a Tanium Cloud POC Environment
- Work with your PTSE or TSE*
*Note: Bring your own IdP (OKTA/Duo/Azre/etc)
-
Identify technical resources to complete pre-requisites
- IdP / Clients.Firewall Rules (if needed) / AV Exclusions / VPN Subnets
-
Pre-Requisites / Environment Prep
- Identify SAML 2.0 IdP
- Identify Clients for the Assessment (500min, thousands better)
- Identify VPN Subnets
- Firewall Rules
- Configure AV Exclusions
- (Optional > Impact) Configure Secure LDAP for Azure AD DS
- (Optional) Configure network Security Group
Step 2: Execution
-
Assessment setup and run
Configure the Tanium platform for the assessment and deploy the Tanium client on all relevant endpoints in the environment. Follow the process to ensure all modules are set up correctly and endpoints are inspected as intended.
-
5 hours over 5 days
- Day 1: (2.5 hrs) Verify AV / Firewall / VP, deploy Tanium clients, and configure Tanium platform for the assessment
- Day 2: (30 mins) Configure Asset SIU, Validate Comply and Reveal scan status
- Day 3: (30 mins) Validate Reveal scan status
- Day 4: (30 mins) Assign asset critically to endpoints
- Day 5: (1 hr) Assessment data collection (automated)
Step 3: Post-Execution
-
Data collection and document creation
Export data from the Tanium platform and create the Risk Assessment report. Present the assessment to key stakeholders within the customer/prospect.
*After the assessment is presented to stakeholders, convert to PC or PO, or remove the Tanium client from the endpoints.
-
Post-Execution
- Partner / TSE generates assessment report and reviews content including proposal section
- Team runs an executive workshop to deliver finding (written repots) and discuss conclusions and recommendations
- Post event opportunity
- Convert client to a POC and demonstrate remediation
- Sell continuous assessment or remove Tanium agent
- Partner works with client on non-tooling outcomes