Professional Documents
Culture Documents
Risk and Opportunity Record
Risk and Opportunity Record
1 F 01
2 The Internal 1 2 1 2
responsibility of
Assets are not
allocated
3 The assets are Internal 1 2 1 2
not being
returned to the
organization
after completion
of contract or
termination that
belongs to the
organization
4 In adequate Internal 1 1 2 2
control on Media
through V-lan
and fire wall
policies
13 Business Internal 1 1 3 3
process audits
are not done in
order to
minimise the
disruption
17 Non-availability Internal 1 3 1 3
of Business
continuity plan
18 Physical entry Internal 3 2 1 6
controls are not
done for the
portable media
etc.
22 Network External 1 3 1 3
Connectivity is
not adequate
23 High Employee Internal 1 2 1 2
Turnover
24 system screen Internal 1 2 1 2
are not being
locked while
working inside or
out side the
office
32 No system of Internal 1 2 1 2
monitor spam
activity by MX
tool box which
blocks our
public IP
33 Financial and Internal 3 2 2 12 Important document can miss
important place and missused, which
document left leads to organization's heavy
lying arround lose.
46 Segregation of Internal 1 2 1 2
Duties not done
47 If the Internal 3 1 1 3
teleworking/remot
e allowed to all the
employees
48 background Internal 1 1 1 1
verification of
employees prior to
the appointment
not done
54 No specific Internal 1 2 1 2
guideline to share
information
relevant to specific
dept/ person only
TIES 01.0
Issue Date: - 18.01.2019
Page No.: - 01 of
01
procedure for Risk assessment Risk: if rating (RL=1 to 3- negligible - no action recommended )
cident Investigation (if rating 4 to 12 -
Opportunity for improvement)
if rating (RL= 13 to 27 - Pure Risk)