How to Complete a Risk Assessment in 5 Days or Less
Features
- Presents and explains the key components of risk management: risk analysis, risk assessment, risk mitigation, vulnerability assessment, and compliance checking
- Demonstrates how the components of risk management are absolutely necessary and work in any organization and business situation
- Shows how a cost-benefit analysis is part of risk management and how this analysis is performed as part of risk mitigation
- Explains how to draw up an action plan to protect the assets of the organization when the risk assessment process concludes
- Examines the difference between a Gap Analysis and a Security or Controls Assessment
Summary
Successful security professionals have had to modify the process of responding to new threats in the high-profile, ultra-connected business environment. But just because a threat exists does not mean that your organization is at risk. This is what risk assessment is all about. How to Complete a Risk Assessment in 5 Days or Less demonstrates how to identify threats your company faces and then determine if those threats pose a real risk to the organization.
To help you determine the best way to mitigate risk levels in any given situation, How to Complete a Risk Assessment in 5 Days or Less includes more than 350 pages of user-friendly checklists, forms, questionnaires, and sample assessments.
Presents Case Studies and Examples of all Risk Management Components
Based on the seminars of information security expert Tom Peltier, this volume provides the processes that you can easily employ in your organization to assess risk.
Answers such FAQs as:
- Why should a risk analysis be conducted?
- Who should review the results?
- How is the success measured?
Always conscious of the bottom line, Peltier discusses the cost-benefit of risk mitigation and looks at specific ways to manage costs. He supports his conclusions with numerous case studies and diagrams that show you how to apply risk management skills in your organization—and it’s not limited to information security risk assessment. You can apply these techniques to any area of your business. This step-by-step guide to conducting risk assessments gives you the knowledgebase and the skill set you need to achieve a speedy and highly-effective risk analysis assessment in a matter of days.
Table of Contents
The Facilitated Risk Analysis and Assessment Process (FRAAP)
Risk Analysis (Project Impact Analysis)
Pre-Screening
Business Impact Analysis
Gap Analysis
Appendix A Facilitator Skills
Appendix B FRAAP Team Members
Appendix C Project Scope Statement
Appendix D Laws, Standards, and Regulations
Appendix E Frequently Asked Questions about Risk Management
Appendix F Risk Analysis versus Risk Assessment
Appendix G Sample Threat Checklist
Appendix H Sample BIA Questionnaire
Appendix I Sample Risk Assessment Management
Summary Report
Appendix J Project Scope Statement
Appendix K Why Risk Assessments Fail
Appendix L Gap Analysis Examples
Appendix M Control Lists
Appendix N Heat Charts
Downloads Updates
| Resource | OS Platform | Updated | Description | Instructions |
|---|---|---|---|---|
| Platform type | December 09, 2009 | Web site provides checklists, worksheets and other documents for conducting a risk assessment | click on http://www.infosectoday.com/Risk_Assessment |
