Sign up to save your podcasts
Or
Share Risk Assessment - What to Assess
Share to email
Share to Facebook
Share to X
Share to email
Share to Facebook
Share to X
Or
Risk Assessment - What to Assess
Send us a text
These 3 steps you can take to perform a risk assessment:
- Identify and document the scope and assets to be assessed. I suggest starting with your critical assets.
- Identify and collect your assessment data.
- Vulnerability scan (including applications)
- Minimum security baseline scan
- Access management at the OS and application levels
- Standard exceptions against your scoped systems
- Security information and event management (SIEM) logging and alerting
- Analyze and report
The most important part is the analysis, since quantitative data alone may not provide the correct information.
========
Training: https://www.execcybered.com/iso27001foundationcourse
Linkedin: https://www.linkedin.com/company/exceccybered/
Twitter: https://twitter.com/DrBillSouza
Instagram: https://www.instagram.com/drbillsouza/
Author: Dr. Bill Souza | Jun 28, 2022
View all episodes
By Dr. Bill Souza
5
11 ratings
Send us a text
These 3 steps you can take to perform a risk assessment:
- Identify and document the scope and assets to be assessed. I suggest starting with your critical assets.
- Identify and collect your assessment data.
- Vulnerability scan (including applications)
- Minimum security baseline scan
- Access management at the OS and application levels
- Standard exceptions against your scoped systems
- Security information and event management (SIEM) logging and alerting
- Analyze and report
The most important part is the analysis, since quantitative data alone may not provide the correct information.
========
Training: https://www.execcybered.com/iso27001foundationcourse
Linkedin: https://www.linkedin.com/company/exceccybered/
Twitter: https://twitter.com/DrBillSouza
Instagram: https://www.instagram.com/drbillsouza/
Author: Dr. Bill Souza | Jun 28, 2022