Guest post Created: Jan 12, 2016 Last commented: Jan 12, 2016

Assessment of processes

Hello, I am actually assessing some processes in our ISMS, Can you please help me with some questions to ask or some Threats/vulnerabilities comprimising the availability, confidentiality and integrity of a process? Many Thanks

0 0

Assign topic to the user

Select user

Guest

DejanK Jan 12, 2016

Here you'll find a catalogue of threats and vulnerabilities: https://advisera.com/27001academy/knowledgebase/threats-vulnerabilities/

This catalogue is made for assessing threats and vulnerabilities of assets, but it can be used for processes as well. By the way, when speaking about ISO 27001, it is much better to do asset-based risk assessment because it gives much more precise results.

You can also read about the process of risk assessment here: https://advisera.com/27001academy/knowledgebase/iso-27001-risk-assessment-treatment-6-basic-steps/

Quote

0 0

Guest

Guest post Jan 12, 2016

Thanks, our Risk assessment is asset based assessment, we do have several processes that I wanted to know what could compromise their availability, Confidentiality and integrity from the list of Threats/Vulnrabilities.

Quote

0 0

Comment as guest or Sign in

HTML tags are not allowed

Name *

Email *

I accept the Privacy and Terms

Notify me when someone replies

Jan 12, 2016

Expert Advice Community