2023 IT Examiner School
Risk Assessment Review & Key Points
• Purpose • Risks • Risk Appetite
• Risk management • Risk Assessment
Risk Assessment Review
The risk assessment must identify: • Information and technology assets of the organization • Assess likelihood and impact of threats & vulnerabilities (inherent risk) • Risk Response (Accept, Transfer, Reduce, Ignore) • Audit controls/provide assurance
Made with FlippingBook - Share PDF online