"I deselected some controls to see where the residual risk would change from 0 to 1 to 2 to 3
When I deselected some controls the residual risk went from 0 to 3, nothing in between.
When I re-checked all of the controls the residual risk remained at 3.
How do I reset the value back to 0?
How do I get a residual value of 1 or 2?
Asset: Network equipment
Vulnerability: Rules for IT/communications equipment not clearly defined
Threat: Interruption of communication services
Which items to select?
Assign topic to the user
Suggested controls for this set of Asset-Threat-Vulnerability are:
- A.9.1.2 Access to networks and network services
- A.13.1.1 Network controls
- A.13.1.2 Security of network services
For further information, see:
- Using Intrusion Detection Systems and Honeypots to comply with ISO 27001 A.13.1.1 network controls https://advisera.com/27001academy/blog/2016/07/04/using-intrusion-detection-systems-and-honeypots-to-comply-with-iso-27001-a-13-1-1-network-controls/
- How to manage the security of network services according to ISO 27001 A.13.1.2 https://advisera.com/27001academy/blog/2017/02/13/how-to-manage-the-security-of-network-services-according-to-iso-27001-a-13-1-2/
Comment as guest or Sign in
Sep 16, 2021