Professional Documents
Culture Documents
Risk Analytics (IMT) - Chapter 13
Risk Analytics (IMT) - Chapter 13
Analytics
Risk Assessment
for Organisation
Chapter 13
LOs
• Define the scope of risk within an organisation
• Explain legal and regulatory compliance issues in risk assessment
• Employ security countermeasures
Defining the Scope of
Risk
Identifying Critical
Business Activities
One of the tools that can help in identifying such activities is Business
Impact Analysis (BIA). BIA is a technique used to evaluate potential
financial, safety, regulatory, legal, contractual and reputational effect
of risk on business operations. A BIA requires the following 5
elements for its successful implementation:
Identifying Critical
Business Activities
Identifying Security
Gaps in Information
Systems
• The difference between the current security system and the one
which is required is known as information security gap. It refers to
the difference between reality and desirability.