risk assessment model

convocourses.com
Join Our Community

risk assessment model

The risk assessment model is decomposed in NIST SP 800-37, Guide for Risk Assessments.

risk identification
risk identification

The risk assessment model is designed to identify threat sources and events, identify vulnerabilities and predisposing conditions, determine likelihood of occurrence, determine magnitude of impact and finally determine risk. Some of the devices used to do this are risk register:

Risk Register Template – version a Risk Register Template – version b

The risk assessment model is only one part of the risk management process in DIARMF and other risk management frameworks:

risk evaluation
risk evaluation

 

Leave a Comment

Your email address will not be published. Required fields are marked *

Join the ConvoCourses Community for insights, offers, and exclusive learning updates!

Join the ConvoCourses Community

Shop GRC, Cyber, and IT books, audio, and merch!

Shop Now

Create your personalized GRC RoadMap and take control of your learning and career growth.

Start TODAY!

Check out Bruce’s Cyber GRC books on Amazon and elevate your governance, risk, and compliance skills.

Shop Now
Scroll to Top