"I deselected some controls to see where the residual risk would change from 0 to 1 to 2 to 3
When I deselected some controls the residual risk went from 0 to 3, nothing in between.
When I re-checked all of the controls the residual risk remained at 3.
How do I reset the value back to 0?
How do I get a residual value of 1 or 2?
Asset: Network equipment
Vulnerability: Rules for IT/communications equipment not clearly defined
Threat: Interruption of communication services
Which items to select?
Assign topic to the user
ISO 27001 RISK ASSESSMENT TABLE
Implement risk register using catalogues of vulnerabilities and threats.
Get it now 
ISO 27001 RISK ASSESSMENT TABLE
Implement risk register using catalogues of vulnerabilities and threats.
Get it now
ISO 27001 RISK ASSESSMENT TABLE
Implement risk register using catalogues of vulnerabilities and threats.
Get it now
Suggested controls for this set of Asset-Threat-Vulnerability are:
- A.9.1.2 Access to networks and network services
- A.13.1.1 Network controls
- A.13.1.2 Security of network services
For further information, see:
- Using Intrusion Detection Systems and Honeypots to comply with ISO 27001 A.13.1.1 network controls https://advisera.com/27001academy/blog/2016/07/04/using-intrusion-detection-systems-and-honeypots-to-comply-with-iso-27001-a-13-1-1-network-controls/
- How to manage the security of network services according to ISO 27001 A.13.1.2 https://advisera.com/27001academy/blog/2017/02/13/how-to-manage-the-security-of-network-services-according-to-iso-27001-a-13-1-2/
Comment as guest or Sign in
Sep 16, 2021