Expert Advice Community

Home / ISO 27001 & 22301 / Risk assessment - threats related to top management

Guest

Risk assessment - threats related to top management

ISO 27001 & 22301
  Quote
Guest
Guest user Created:   May 31, 2016 Last commented:   May 31, 2016

Risk assessment - threats related to top management

ISO 27001 & 22301
I am in the process of completing the Risk Assessment table. Can you give me examples of what types of threats that top management could pose in a very small company--5 people?
0 0

Assign topic to the user

ISO 27001 RISK ASSESSMENT TABLE

Implement risk register using catalogues of vulnerabilities and threats.

ISO 27001 RISK ASSESSMENT TABLE

Implement risk register using catalogues of vulnerabilities and threats.
Expert
Dejan Kosutic May 31, 2016

Answer:

Threats could be numerous, but I would say that the biggest threat is unavailability of e.g. the CEO, especially if the related vulnerability would be that there are no replacements for that person.

Other threats could be similar to other employees - breaking the information security rules, misuse of assets, not protecting adequately confidential information, etc.

This article may help you: ISO 27001 risk assessment: How to match assets, threats and vulnerabilities https://advisera.com/27001academy/knowledgebase/iso-27001-risk-assessment-how-to-match-assets-threats-and-vulnerabilities/

Quote
0 0

Comment as guest or Sign in

HTML tags are not allowed

May 31, 2016

May 31, 2016

Suggested Topics
AntonioS Created:   Jan 13, 2016 ISO 27001 & 22301
Replies: 0
0 0

Security controls to mitigate cybersecurity threats
Guest user Created:   Jul 07, 2022 ISO 27001 & 22301
Replies: 1
0 0

ISO 27001 and ISO23301 Policies