Introduction to risk management and its component, Computer Network Security


Risk management is the procedure of identifying and controlling risks facing an organization. Risk management is the discipline which is employed for identifying, monitoring and limiting risks. In some of the cases the acceptable risk can be near zero. Risks can occur from accidents, natural calamities and disasters as well as deliberate attacks from an adversary. The several components of risk management and their relationship to each other are shown in Figure given below.2.1.The main ISO standards on risk management include in businesses, risk management organized activity to manage threats and uncertainty and involves people following procedures and by using tools in order to ensure conformance with risk management policies
Components of Risk Management

The whole process is made up of 2 major components. They are

• Risk identification is the procedure of examining and documenting an organization’s present information technology security situation.
• Risk control is the procedure of applying controls to reduce risks to an organizations data and information system.

Risk management is used in the public sector to identify and mitigate the risk to critical infrastructure. These methodologies comprise of the following elements, performed in the following order.

• identify assets and identify which are the most critical
• identify, characterize, and assess the threats
• assess vulnerability of critical assets to specific the threats
• determine the risk (that is the expected consequences of specific types of attacks on specific assets)
• identify the methods to reduce those risks
• prioritize the risk reduction measures based on strategy



1319_component of risk management.png

Posted Date: 10/8/2012 5:44:17 AM | Location : United States

Related Discussions:- Introduction to risk management and its component, Assignment Help, Ask Question on Introduction to risk management and its component, Get Answer, Expert's Help, Introduction to risk management and its component Discussions

Write discussion on Introduction to risk management and its component
Your posts are moderated
Related Questions
INTRODUCTION TO SECURITY AND PERSONNEL When implementing information security, there are several human resource issues that should be addressed. They are •    Positioning and n

How can I get help for Linux automotion configuration (Network, virtualization, security and Firewal etc) with bash scrip. What is the charge for.

Many applications are vulnerable to intrusion attacks and can provide misleading reports about misbehaving nodes. Some of the mechanisms under such a category include the Bayesian

QUESTION (a) A convex flow problem is a non linear network flow problem. Explain how a convex flow problem could be transformed into a Minimum Cost Flow problem. (b) Exp

In BUS topology every computer is directly connected to primary network cable in a single way. Bus networks are the easiest way to connect multiple users, but can have problems

Categories of Controls Controlling risk through mitigation, avoidance or transference is accomplished by implementing controls. There are 4 effective approaches to select the co

QUESTION (a) Hashing and salting is commonly used as password storage techniques for most applications. Describe how hashing and salting enable secure storage of password (b

Question 1: (a) Differentiate between symmetric and asymmetric encryption system. (b) Describe how a digital signature is created. (c) Explain briefly what SSL (secure so

QUESTION (a) Mention two attitudes of a carer towards an inspector that could lead to negative outcomes (b) Give two performance indicators of Early Childhood Education that

(a) What are the different architectures for wireless networks? (b) Explain how WEP authentication and encryption works, describe the vulnerability. (c) In what ways are secu