Expert Advice Community

Home / ISO 27001 & 22301 / Risk assessment

Guest

Risk assessment

ISO 27001 & 22301
  Quote
Guest
Guest user Created:   Oct 31, 2018 Last commented:   Oct 31, 2018

Risk assessment

ISO 27001 & 22301
I'am looking for some good examples or ways to gather security risks..I did go through your webinar..on risk..but practical approach..blogs any
0 0

Assign topic to the user

ISO 27001 RISK ASSESSMENT TABLE

Implement risk register using catalogues of vulnerabilities and threats.

ISO 27001 RISK ASSESSMENT TABLE

Implement risk register using catalogues of vulnerabilities and threats.
Expert
Rhand Leal Oct 31, 2018

Answer:

For methods to gather security risks I suggest you to look for ISO 31010, the ISO standard for Risk assessment techniques.

These articles will provide you further explanation about risk assessment and ISO 31010:
- ISO 27001 risk assessment: How to match assets, threats and vulnerabilities https://advisera.com/27001academy/knowledgebase/iso-27001-risk-assessment-how-to-match-assets-threats-and-vulnerabilities/
- Diagram of ISO 27001:2013 Risk Assessment and Treatment process https://info.advisera.com/27001academy/free-download/diagram-of-iso-270012013-risk-assessment-and-treatment-process
- ISO 31010: What to use instead of the asset-based approach for ISO 27001 risk identification https://advisera.com/27001academy/blog/2016/04/04/iso-31010-what-to-use-instead-of-the-asset-based-approach-for-iso-27001-risk-identification/

Quote
0 0

Comment as guest or Sign in

HTML tags are not allowed

Oct 31, 2018

Oct 31, 2018

Suggested Topics
Guest user Created:   Oct 25, 2023 ISO 27001 & 22301
Replies: 1
0 0

Initial Risk Assessment Non-conformity
Guest user Created:   Sep 05, 2023 ISO 27001 & 22301
Replies: 3
0 0

Risk assessment: multiple vulnerabilities for the same threat
Guest user Created:   Aug 29, 2023 ISO 27001 & 22301
Replies: 1
0 0

Controls in the SoA that so not show up in the Risk Assessment