ASSESSMENT TRAINING 1.) DEFINE THE REQUIREMENTS RISK = PROBABILITY X SEVERITY
Probability is the likelihood of
an event happening.
Severity describes the
highest level of damage possible when an accident occurs from a particular hazard/threat. 2.) IDENTIFY RISK
THINK OF A TASK YOU
ARE ABOUT TO GET DONE AND IDENTIFY IF THERE IS ANY SECURITY THREAT? 3.) ANALYZE THE RISK
Risk analysis typically involves
understanding how a threat might occur, which requires you to identify a vulnerability in your assets and a threat that could exploit the vulnerability 4.) EVALUATE RISK
Calculate where each risk sits
on the risk scale and identify whether the risk falls within your predetermined level of acceptable risk. 5.) LIST TREATMENT OPTION
List options that can be put in
place to either totally eliminate the threat or bring it down. THANK YOU