Expert Advice Community

Guest

ISO 27005 and ISACA RiskIT

  Quote
Guest
Guest user Created:   Dec 05, 2016 Last commented:   Dec 05, 2016

ISO 27005 and ISACA RiskIT

What do you have in the toolbox that provides a gap analysis between ISO 27005 and ISACA RiskIT?
0 0

Assign topic to the user

ISO 27001 RISK ASSESSMENT AND RISK TREATMENT METHODOLOGY

Define main rules for risk assessment and treatment.

ISO 27001 RISK ASSESSMENT AND RISK TREATMENT METHODOLOGY

Define main rules for risk assessment and treatment.

Expert
Rhand Leal Dec 05, 2016

Answer: Unfortunately we do not have this kind of material in our toolbox, but RiskIT framework material provided by ISACA, in Appendix 2 has a high-level comparison with other risk management standards and frameworks, including ISO 27005. To download this material you only have to have a site login, you can obtain one free of charge. What I can inform you without incur in Intellectual Property Rights violation is that ISO 27005 processes (Risk analysis, identification, estimation, and evaluation) are covered by RiskIT process RE2 (Analyse Risk), but since RiskIT is a more specific framework, it has a deeper level of detail than ISO 27005.

Quote
0 0

Comment as guest or Sign in

HTML tags are not allowed

Dec 05, 2016

Dec 05, 2016

Suggested Topics