• Embed Doc
  • Copy Link
  • Readcast
  • Collections
  • CommentGo Back
Download
 
NATIONAL CYBER SECURITY POLICY - ENTITY/SUB-ENTITY RISK ASSESSMENT PROCESS
Worksheets in this Workbook 1.Process Charts- this worksheet2.Summary & Declaration- Summary of risk assessment and declaration by officer submitting the risk assessment3.Part 1-CNI Entity Information- Profile of Entity/Sub-Entity submitting the risk assessment (Please read the instructions in this CNII Entity Information worksheet to start doing the risk assessment)4.High level risk assessment worksheets:a.Part 2-HL Impact- High level impact analysis b.Part 3-HL Dependency- High level dependency (on ICT or cyber systems) analysis c.Part 4-HL Controls- High level controls analysis 5.Detailed risk assessment worksheets:a.Part 5-Detailed Impact Analysis- Impact to various segments/elements of the Nation/National Economy b.Part 6-Detailed Threat Analysis- Likelihood of threats exploiting vulnerabilities c.Part 7-Detailed Risk Assessment Result Summary of Charts In This Worksheet (for infomation only)Chart 1 : Risk Assessment Framework Chart 2 : Risk Assessment Process Framework (that is referred in Chart 1)Chart 3 : Compliance Governance Framework (that is referred in Chart 1)Chart 4 : High Level Risk Assessment and Detailed Risk Assessment
Note : Adjust the appropriate zoom factor to be able to see each complete chart within your screen.
 
1. CGSO ASSEMBLES ANNUAL QUESTIONNAIREWITH INPUTS FROM MKN AND NC3-PT62. CGSO SENDS QUESTIONNAIRE TO REGULATORY BODIES AND CNI ENTITIES 
Includes RiskAssessmentInformationRequired
CHART 3 : COMPLIANCE GOVERNANCE FRAMEWORK
 
3. CNI ENTITIES FILL QUESTIONNAIRE AND SENDRESPONSE TO PT64. NC3-PT6 CONSOLIDATE OVERALL AND SENDTO CGSO FOR KEY POINTS COMMITTEE APROVAL5. KEY POINTS COMMITTEE APPROVES ANDCGSO PROVIDES UPDATED LIST TO NC3-PTs6. NC3-PTs USE UPDATED LIST/COMPLIANCE INFOTO PRIORITIZE ACTIVITIES AND FOCUS AREAS
Compliance andRisk AssessmentInformationComplianceInformationRisk-Impact RankInformation
 
10/27/2009 21:54:3624067438.xls (Summary & Declaration)
SUMMARY AND DECLARATION - ENTITY/SUB-ENTITY RISK ASSESSMENT
 
Ref Code : For Office Use OnlyLow Impact
Dependency Analysis Not RequiredControls Assessment Not Required
 FILL IN THE PARTICULARS OF RESPONDENT AND REVIEWER/APPROVER BELOW (Items 1 to 4 to be filled in Part 1, not here)
1
CNI ENTITY :
Lembaga Pelabuhan Johor2
CNI SUB-ENTITY :
 34A1-8A1, Pusat Perdagangan Pasir Gudang, Jalan Bandar, 81700 Pasir Gudang, Johor48
NAME OF RESPONDENT :
9
DESIGNATION :
1011
CORRESPONDENCE ADDRESS :
12
TELEPHONE NOS. :
 13
FAX NOS. :
14
EMAIL ADDRESS :
Signature and Stamp15
WEBSITE/PORTAL ADDRESS :
Date : 1617
POSITION :
1819
CORRESPONDENCE ADDRESS :
20
TELEPHONE NOS. :
 21
FAX NOS. :
22
EMAIL ADDRESS :
Signature and StampDate :
SUMMARY FOR (SUB-) ENTITY'S SERVICE OR PRODUCT HIGH LEVEL RISK ASSESSMENT 
Detailed Risk  Assessment Not Compulsory 
ADDRESS WHERE SERVICE ISCENTERED/DELIVERED/ORIGINATEDFROM OR ADDRESS WHERE PRODUCTIS PRODUCED :SHORT NAME OF SERVICE OR PRODUCT(GROUP) :
 To the best of my knowledge, I declare that informationsubmitted here are true and assessments submitted inthe remaining worksheets are fair reflection of theorganisation.
DEPARTMENT/ DIVISION / SECTIONNAME OF REVIEWER/APPROVER OFRESPONSE :DEPARTMENT/ DIVISION / SECTION
of 00

Leave a Comment

You must be to leave a comment.
Submit
Characters: ...
You must be to leave a comment.
Submit
Characters: ...