Implementing a Best Practice Risk Assessment Methodology

Document from the year 2013 in the subject Business economics - Information Management language: English abstract: Risk assessments play a critical role in the development and implementation of effective information security programs and help address a range of security related issues from advanced persistent threats to supply chain concerns.The results of risk assessments are used to develop specific courses of action that can provide effective response measures to the identified risks as part of a broad-based risk management process.The guidance provided here uses the key risk factors of threats vulnerabilities impact to missions and business operations and the likelihood of threat exploitation of weaknesses in information systems and environments of operation to help senior leaders and executives understand and assess the current information security risks to information technology infrastructure.