In 2008, after the acquisition of MGI Pharma by Eisai, Evan co-founded FRSecure. The assessment originally developed years earlier would become the cornerstone offering for FRSecure. The assessment didn’t have a name yet, but it eventually evolved into today’s S2ORG.

The math also evolved, and scoring became more refined. Subjective words were replaced with grades like A, B, C, D, and F. This was a much better way to communicate information security risk, but they were missing a punch. People were OK with mediocrity and had trouble getting the point. Comments like, “even Cs get degrees” were common and information security improvements were not consistently made.

It wasn’t until 2015 that FRSecure started to use a score ranging from 300 – 850. The score range resonated very well with information security and non-information security people alike. Most people understand their credit score and immediately put the information security score into the same sort of context. The original name for this score was the FISASCORE.

In 2017, Evan founded SecurityStudio. SecurityStudio was established as a vehicle to share good information security fundamentals, like risk assessment/management with everyone. In 2019, the FISASCORE was renamed/rebranded to S2Score. The new name results in better brand alignment and less confusion in the marketplace.

Today, the S2Score is used by more than 1,000 organizations across all industries. The algorithms behind the score have gotten tighter, the assessments have gotten better, and everyone who uses the S2Score has benefited from its consistency and simplicity.

DeSoto.io is a proud partner of Security Studio and is ready to help you get your S2Score up! 

Read More:  Original Article