More Related Content
Similar to Risk assessment on information security
Similar to Risk assessment on information security (20)
Risk assessment on information security
- 2. goal: to reduce risks related to
information security
http://www.flickr.com/photos/keylosa/184606430/
- 3. you have to identify risk activities among
sensitive processes
http://www.flickr.com/photos/emiliano-iko/4045654001/
- 12. you have to estimate bad
event probability
http://www.flickr.com/photos/jackpix/146384867/
- 14. if the company
reputation is involved
http://www.flickr.com/photos/striatic/2191404675/
so you get risk
levels that could
increase …
- 15. .. and finally you have to
establish mitigation actions
in order to reduce risk level
- 16. Number of risks identified * (Middle & High level)
human resources
organization
IT
environment
45
5
11
27
* fake data
- 17. Measured vs. Expected * risk index
31,5
9,5
15,5
20
22,5
12,25
6,25
16,5
human resources
organization
IT
environment
* fake data
- 18. and then …
you’ll have to roll up your sleeves and
start mitigation actions
http://www.flickr.com/photos/pennstatelive/5059771553/