List of referenced risks and numbers
)n the example of the Risk Treatment Plan used in the ISO 27001 online training, there was mention of reference to risks like:-
Risk no 16. Unavailability of electronic records due to accidental loss.
Risk no 32. Laptops could be stolen by external persons.
How do I get a list of this referenced risks and numbers?
Assign topic to the user
Please note that these referenced risks and numbers are only examples for the training, so there is no complete list of risks.
To see a comprehensive list of threats and vulnerabilities you can use to develop a risk assessment and a risk treatment plan, please see this article:
- Catalog of threats & vulnerabilities https://advisera.com/27001academy/knowledgebase/threats-vulnerabilities/
In the Risk Assessment Table template available at this link: https://advisera.com/27001academy/documentation/risk-assessment-table/
You can see a demo of a list of assets, threats, and vulnerabilities.
This article will provide you a further explanation about risk assessment:
- ISO 27001 risk assessment: How to match assets, threats, and vulnerabilities https://advisera.com/27001academy/knowledgebase/iso-27001-risk-assessment-how-to-match-assets-threats-and-vulnerabilities/
These materials will also help you regarding risk assessment:
- The basics of risk assessment and treatment according to ISO 27001 [free webinar on demand] https://advisera.com/27001academy/webinar/basics-risk-assessment-treatment-according-iso-27001-free-webinar-demand/
- Book ISO 27001 Risk Management in Plain English https://advisera.com/books/iso-27001-annex-controls-plain-english/
Comment as guest or Sign in
Sep 16, 2020