Expert Advice Community

Home / ISO 27001 & 22301 / Filling the risk assessment template

Guest

Filling the risk assessment template

ISO 27001 & 22301
  Quote
Guest
Guest user Created:   Jul 06, 2018 Last commented:   Jul 06, 2018

Filling the risk assessment template

ISO 27001 & 22301
Our company has bought the documentation package for ISO 27001 from you. At the moment we are in Chapter 6 in the Risk Assessment and are currently setting the level of risk. Does the information value about the threat, vulnerability, extent of damage and likelihood of occurrence fall into an area where the risk is initially accepted and monitored, does one have to enter an "existing measure" in the last column?
0 0

Assign topic to the user

ISO 27001 DOCUMENTATION TOOLKIT

Step-by-step implementation for smaller companies.

ISO 27001 DOCUMENTATION TOOLKIT

Step-by-step implementation for smaller companies.
Expert
Rhand Leal Jul 06, 2018

Answer: If you have existing measures you believe are related to the identified risk, you have to include them in the last column, even if the risk value falls as an acceptable risk. Probably these measures are the reason for the low value of the risk and your organization must be aware of them in the risk assessment and treatment process.

By the way, included in the toolkit you have access to a video tutorial that can help you fill the risk assessment template.

Quote
0 0

Comment as guest or Sign in

HTML tags are not allowed

Jul 06, 2018

Jul 06, 2018

Suggested Topics
Guest user Created:   Mar 04, 2023 ISO 27001 & 22301
Replies: 1
0 0

Toolkits ISO 27001 & ISO 22301
Guest user Created:   Jun 24, 2022 ISO 27001 & 22301
Replies: 1
0 0

ISMS implementation
Guest user Created:   Jun 10, 2020 ISO 27001 & 22301
Replies: 1
0 0

ISO 27001 implementation