LIVE VIRTUAL TRAININGS
Learn in small groups from top experts and real-life examples

Expert Advice Community

Guest

Risk assessment and risk register

  Quote
Guest
Guest user Created:   Feb 27, 2019 Last commented:   Feb 27, 2019

Risk assessment and risk register

Are Risk Assessment and Risk Register different? I've made Risk Assessment template and found out some of risk register template that is more or less similar with risk assessment. Can this template be combine into one? or risk assessment template only is enough to comply the standard requirement?
0 0

Assign topic to the user

ISO 27001 DOCUMENTATION TOOLKIT

Step-by-step implementation for smaller companies.

ISO 27001 DOCUMENTATION TOOLKIT

Step-by-step implementation for smaller companies.

Expert
Rhand Leal Feb 27, 2019

Answer:

Risk assessment is the process to identify, analyze and evaluate risks, while the risk register is the record where the results of risk assessment process are filled in. Our Risk Assessment template is a risk register. The steps to perform the risk assessment are described in the Risk Assessment and Risk Treatment Methodology template.

The Risk Assessment template is enough to be compliant with ISO 27001 requirements, so you do not need to combine it with other documents.

This article will provide you further explanation about risk assessment:
- ISO 27001 risk assessment & treatment – 6 basic steps https://advisera.com/27001academy/knowledgebase/iso-27001-risk-assessment-treatment-6-basic-steps/

This material will also help you rega rding risk assessment:
- The basics of risk assessment and treatment according to ISO 27001 [free webinar] https://advisera.com/27001academy/webinar/basics-risk-assessment-treatment-according-iso-27001-free-webinar-demand/
Quote
0 0

Comment as guest or Sign in

HTML tags are not allowed

Feb 27, 2019

Feb 27, 2019