Question: Introduce how to establish the context, which includes understanding the organizations internal and external operating environments and other factors that could impact the RM process.

Introduce how to establish the context, which includes understanding the organization’s internal and external operating environments and other factors that could impact the RM process.
Identify the risk:
a. Create an inventory of information assets
b. Classify and organize assets meaningfully
c. Assign a value to teach information asset
d. Identify threats to the cataloged assets.
e. Pinpoint vulnerable assets by tying specific threats to specific assets.
Analyze the risk:
a. Determining the likelihood that vulnerable systems will be attacked.
b. Assessing the relative risk facing the organization’s information assets
c. Calculating the risks to which assets are exposed.
d. Looking at controls that might come into play for identified vulnerabilities and how to control those risks.
e. Documenting and reporting the findings of risk identification and assessment.
Evaluate the risk by comparing identified uncontrolled risks against the risk appetite.
Treat the unacceptable risk.
Discuss summarizing the findings and stating the conclusions of the investigation.
Explain how a risk management strategy calls on information security professionals to identify, classify, and prioritize their organizations’ information assets.

Step by Step Solution

★★★★★

3.19 Rating (160 Votes )

There are 3 Steps involved in it

1 Expert Approved Answer

Step: 1 Unlock

1 To establish the context for risk management organizations need to understand their internal and external operating environments and other factors t... View full answer

Question Has Been Solved by an Expert!

Get step-by-step solutions from verified subject matter experts

Step: 2 Unlock

Step: 3 Unlock

Students Have Also Explored These Related Principles Of Information Security Questions!

The halo effect can come into play for lots of reasons: a pleasant personality, a shared work history (i.e., you both worked for the same company in the past) or a shared network of business...

Understand the internal factors that could impact or influence the RM process: The organizations governance structure (or lack thereof). The organizations internal stakeholders. The organizations...

List factors that could impact the presence of financial statement fraud in a real estate business and in a high-pressure sales organization. What are common to both lists? List other types for...

Scenario: Risk Management Imagine a patient who went through abdominal surgery, and the surgical team unintentionally left an instrument in the abdomen. Days after surgery, the patient developed high...

Imagine a patient who went through abdominal surgery, and the surgical team unintentionally left an instrument in the abdomen. Days after surgery, the patient developed high fever and pain and had to...

ISSUES IN ACCOUNTING EDUCATION Vol. 26, No. 3 2011 pp. 521-545 American Accounting Association DOI: 10.2308/iace-50031 Breach of Data at TJX: An Instructional Case Used to Study COSO and COBIT, with...

CHAPTER 1 THE BUSINESS AND SOCIETY RELATIONSHIP BUSINESS & SOCIETY Title ISBN Business and Society Archie B. Carroll; Ann K. Buchholtz 978-1-285-73429-3 Publisher Cengage Learning Author FOCUS OF THE...

PROGRAMME HANDBOOK: JANUARY 2016 INTAKE ASSIGNMENT 2: HUMAN RESOURCES DEVELOPMENT Read the case study below and answer the questions that follow. National HRD in Finland, Russia, and South Africa...

In 500+ words, discuss how the recommendations in the article of what a public leader should do in his everyday work life are connected to the management and leadership theories studied (Ex:...

In the Red Brand problem with shrinkage, change the assumptions. Now instead of assuming that there is some shrinkage at the warehouses, assume that there is shrinkage in delivery along each route....

At the end of the recent fiscal year, Swifty Bakery was comparing its budgeted costs to its allocated costs for all of its key activities (not including direct materials and direct labor) as follows....

Which of the following provides an indication of a higher quality of net income? Multiple choice question. Investing cash flows that are highly correlated with net income Operating cash flows that...

1. What are the Unions best arguments? CASE STUDY 5-1 Oakhurst Hospital, an acute care hospital with 257 licensed beds, has approximately 181 staff registered nurses (RNs) who provide direct care to...

What are the ongoing responsibilities security managers have in securing the SDLC?

What is vulnerability assessment?

What is penetration testing?

CGT Co.s stock is currently selling for $15.25 per share, and they have 10,000,000 shares outstanding. They have $40,000,000 book value of 20-year, 9% coupon semiannual bonds outstanding (40,000...

(Cost of debt) Temple-Midland, Inc. is issuing a $1,000 par value bond that pays 8.3 percent annual interest and matures in 15 years. Investors are willing to pay $953 for the bond and Temple faces a...

Question 10 Determine the amount of long-term debt for ABC Co. using the following balance sheet information: cash balance of $24,671, accounts payable of $98,668, common stock of $401,310, retained...