Guest user Created: Oct 04, 2018 Last commented: Oct 04, 2018

Performing risk assessment

I am trying to assist an IT Managed Services provider to implement a security framework within their organisation. No to get ISO 27001 certified, but to give their clients comfort that they have addressed their security risks. I am looking for the process to follow in order to perform the risk assessment and then "map" their new processes to ISO 27001.

0 0

Assign topic to the user

Select user

Expert

Rhand Leal Oct 04, 2018

Answer:

To perform risk assessment I suggest you to take a look at the free demo of our ISO 27001/ISO 22301 Risk Assessment Toolkit at this link: https://advisera.com/27001academy/iso-27001-22301-risk-assessment-toolkit/

This toolkit enables you to implement information security compliant with ISO 27001.

This article will provide you further explanation about risk assessment:
- ISO 27001 risk assessment & treatment – 6 basic steps https://advisera.com/27001academy/knowledgebase/iso-27001-risk-assessment-treatment-6-basic-steps/

These materials will also help you regarding risk assessment:
- The basics of risk assessment and treatment according to ISO 27001 [free webinar on demand]
https://advisera.com/27001academy/webinar/basics-risk-assessment-treatment-according-iso-27001-free-webinar-demand/
- Book ISO 27001 Risk Management in Plain English https://advisera.com/books/iso-27001-annex-controls-plain-english/

Quote

0 0

Comment as guest or Sign in

HTML tags are not allowed

Name *

Email *

I accept the Privacy and Terms

Notify me when someone replies

Oct 04, 2018

Expert Advice Community