444 pages | 105 B/W Illus.
Successful security professionals have had to modify the process of responding to new threats in the high-profile, ultra-connected business environment. But just because a threat exists does not mean that your organization is at risk. This is what risk assessment is all about. How to Complete a Risk Assessment in 5 Days or Less demonstrates how to identify threats your company faces and then determine if those threats pose a real risk to the organization.
To help you determine the best way to mitigate risk levels in any given situation, How to Complete a Risk Assessment in 5 Days or Less includes more than 350 pages of user-friendly checklists, forms, questionnaires, and sample assessments.
Presents Case Studies and Examples of all Risk Management Components
Based on the seminars of information security expert Tom Peltier, this volume provides the processes that you can easily employ in your organization to assess risk.
Answers such FAQs as:
Always conscious of the bottom line, Peltier discusses the cost-benefit of risk mitigation and looks at specific ways to manage costs. He supports his conclusions with numerous case studies and diagrams that show you how to apply risk management skills in your organization—and it’s not limited to information security risk assessment. You can apply these techniques to any area of your business. This step-by-step guide to conducting risk assessments gives you the knowledgebase and the skill set you need to achieve a speedy and highly-effective risk analysis assessment in a matter of days.
The Facilitated Risk Analysis and Assessment Process (FRAAP)
Risk Analysis (Project Impact Analysis)
Business Impact Analysis
Appendix A Facilitator Skills
Appendix B FRAAP Team Members
Appendix C Project Scope Statement
Appendix D Laws, Standards, and Regulations
Appendix E Frequently Asked Questions about Risk Management
Appendix F Risk Analysis versus Risk Assessment
Appendix G Sample Threat Checklist
Appendix H Sample BIA Questionnaire
Appendix I Sample Risk Assessment Management
Appendix J Project Scope Statement
Appendix K Why Risk Assessments Fail
Appendix L Gap Analysis Examples
Appendix M Control Lists
Appendix N Heat Charts