Risk assessment

Risk assessment

Risk assessment is a method of determining where an organisation may be most exposed to an attack. During the risk assessment, threats and vulnerabilities are identified based on their likelihood and impact that helps to calculate potential risk score and prioritising risk based on that score.

Five steps to assess risk:

• Asset identification

• Asset classification

• Risk Analysis

• Risk Treatments

Assessment outcome:

• Report on risks with the priorities

• Risk treatment recommendations