Construction of Risk Analysis
Assign topic to the user
I do is following the lifting of the risk scenarios failures, there begin
to identify risks for each scenario and also support me as generic risks by
Cobit and ISO 2700X
- I'm not sure if I understood the question well, but ISO 27001 requires to identify 5 elements during the risk assessment: all the assets, for each asset you need to identify threats and vulnerabilities, and then consequence and likelihood for each risk. You can find a detailed explanation in my webinar The basics of risk assessment and treatment according to ISO 27001 https://advisera.com/27001academy/webinar/basics-risk-assessment-treatment-according-iso-27001-free-webinar-demand/
Comment as guest or Sign in
Jan 12, 2016