Cybersecurity and Privacy Law Handbook by Walter Rocchi

Author:Walter Rocchi
Language: eng
Format: epub
Publisher: Packt
Published: 2022-02-15T00:00:00+00:00

(Optional) Should you be pleased with this result? Yes, if the current risk score is within the risk tolerance. Otherwise, the answer is no. This characteristic is optional, however it may facilitate thought.

Risk treatment determination: If the risk is acceptable, Accept should be selected. This means we are satisfied with this risk and no more action is required. Depending on your risk assessment methodology and risk acceptance criteria, Accept might be selected if the risk exceeds your risk tolerance. Nonetheless, if it exceeds risk tolerance, the most probable response is Treat, i.e., take action. You might alternatively select Avoid or Transfer as the risk treatment choice, but these options are unlikely to be utilized much, if ever.

Risk improvement activities: If you have selected the Treat option, you will add one or more new controls or enhance existing controls in the majority of situations. The expectation is that, after these steps have been implemented, they will have some influence on the probability or impact, which will ideally be sufficient to bring the risk below the established risk tolerance. Each activity should have a designated owner and a deadline for completion.

Download

Copyright Disclaimer:
This site does not store any files on its server. We only index and link to content provided by other sites. Please contact the content providers to delete copyright contents if any and email us, we'll remove relevant links or contents immediately.