Expert Advice Community

Guest

Example of risk and its correspondence residual risk

  Quote
Guest
Guest user Created:   Dec 17, 2020 Last commented:   Dec 17, 2020

Example of risk and its correspondence residual risk

Could you kindly give me the example of a risk and its correspondence residual risk. So, that it can be made clear for myself.

0 0

Assign topic to the user

Assign

ISO 27001 DOCUMENTATION TOOLKIT

Step-by-step implementation for smaller companies.

ISO 27001 DOCUMENTATION TOOLKIT

Step-by-step implementation for smaller companies.

Expert
Rhand Leal Dec 17, 2020

Considering approach asset-threat-vulnerability, an example of risk can be, as assets, any power dependable equipment (e.g., servers, desktops, routers, etc.), a threat as power failure, and vulnerability as lack of power generator. For this scenario, you may have as a likelihood of occurrence a value of 2 (in a scale of o to 2), and an impact also of 2 (in a scale of o to 2), with a total risk of 4 (sum of likelihood and impact).

 In case you decide to use as a control to mitigate the risk of the use of a power generator, the likelihood of occurrence may decrease to 0, keeping the impact value 2, and your residual risk would be 2.

These materials will provide you a further explanation about risk assessment and treatment:
- The basics of risk assessment and treatment according to ISO 27001 [free webinar] https://advisera.com/27001academy/webinar/the-basics-of-risk-assessment-and-treatment-according-to-iso-27001-free-webinar/
- ISO 27001 risk assessment & treatment – 6 basic steps https://advisera.com/27001academy/knowledgebase/iso-27001-risk-assessment-treatment-6-basic-steps/
- Why is residual risk so important? https://advisera.com/27001academy/knowledgebase/why-is-residual-risk-so-important/

These materials will also help you regarding risk assessment and treatment:
- Diagram of ISO 27001:2013 Risk Assessment and Treatment process https://info.advisera.com/27001academy/free-download/diagram-of-iso-270012013-risk-assessment-and-treatment-process
- Book ISO 27001 Risk Management in Plain English https://advisera.com/books/iso-27001-risk-management-in-plain-english/
- ISO 27001 Foundations Course http://training.advisera.com/course/iso-27001-foundations-course/

Quote
0 0

Comment as guest or Sign in

HTML tags are not allowed

Dec 17, 2020

Dec 17, 2020

Suggested Topics