Welcome to Scribd!

Skip carousel

Detailed Security Risk Assessment Template: Executive Summary

Uploaded by

Evil Dean

100% found this document useful (1 vote)

50 views5 pages

Risk Assessment template

Original Title

Risk Assessment Template

Copyright

Available Formats

DOC, PDF, TXT or read online from Scribd

Share this document

Share or Embed Document

Sharing Options

Did you find this document useful?

Is this content inappropriate?

Report this Document

Risk Assessment template

Copyright:

Available Formats

Download as DOC, PDF, TXT or read online from Scribd

Flag for inappropriate content

100% found this document useful (1 vote)

50 views5 pages

Detailed Security Risk Assessment Template: Executive Summary

Uploaded by

Evil Dean

Risk Assessment template

Copyright:

Available Formats

Download as DOC, PDF, TXT or read online from Scribd

Flag for inappropriate content

Jump to Page

You are on page 1of 5

Search inside document

DETAILED SECURITY RISK ASSESSMENT TEMPLATE

Executive Summary

[Briefly summarize the scope and results of the risk assessment. Highlight high risk
findings and comment on required management actions]
DETAILED ASSESSMENT

1. Introduction

1.1 Purpose

[Describe the purpose of the risk assessment in context of the organization’s overall
security program]

1.2. Scope of this risk assessment

[Describe the scope of the risk assessment including system components, elements, users,
field site locations (if any), and any other details about the system to be considered in the
assessment]

2. Risk Assessment Approach

2.1 Participants

Role Participant
System Owner
System Custodian
Security Administrator
Database Administrator
Network Manager
Risk Assessment Team

2.2 Techniques Used

Technique Description
[List techniques used e.g., [Describe the technique used and how it assisted
questionnaires, tools] in performing the risk assessment]

2.3 Risk Model

[Describe the risk model used in performing the risk assessment. For an example
risk model refer NIST publication SP-800-30]

3. System Characterization

3.1 Technology components

Component Description
Applications [Describe key technology components including commercial
software]
Databases
Operating Systems
Networks

Interconnections
Protocols

3.2 Physical Location(s)

Location Description
[Include locations
included in scope]

3.3 Data Used By System

Data Description
[Detail data elements [Describe characteristics of data elements]
included in scope]

3.4 Users
Users Description
[Detail categories of [Describe how users access the system and their intended use
users] of the system]

3.5 Flow Diagram

[Provide connectivity diagram or system input and output flowchart to delineate

the scope of this risk assessment effort].

4. Vulnerability Statement
[Compile and list potential vulnerabilities applicable to the system assessed].

Vulnerability Description
[List vulnerabilities] [Describe vulnerability and its impact]

5. Threat Statement
[Compile and list the potential threat-sources applicable to the system assessed].

Threat-Source Threat Actions

[List and/or describe actions that can be taken by
[List threat sources] threat source e.g., identity theft, spoofing, system
intrusion]
5. Risk Assessment Results
[List the observations (vulnerability/threat-source pairs). Each observation should include—
 Observation number and brief description of observation (e.g., Observation 1: User system passwords can be guessed or
cracked)
 A discussion of the threat-source and vulnerability pair
 Identification of existing mitigating security controls
 Likelihood discussion and evaluation (e.g., High, Medium, or Low likelihood)
 Impact analysis discussion and evaluation (e.g., High, Medium, or Low impact)
 Risk rating based on the risk-level matrix (e.g., High, Medium, or Low risk level)
 Recommended controls or alternative options for reducing the risk].

Item Observation Threat-Source/ Existing Likelihood Impact Risk Recommended controls

Number Vulnerability controls Rating

Software Validation A Complete Guide - 2020 Edition
From Everand
Software Validation A Complete Guide - 2020 Edition
Gerardus Blokdyk
No ratings yet
(System Name) : (When Filled IN)
Document34 pages
(System Name) : (When Filled IN)
Ashish Kumar Roy
No ratings yet
Software Verification And Validation A Complete Guide - 2020 Edition
From Everand
Software Verification And Validation A Complete Guide - 2020 Edition
Gerardus Blokdyk
No ratings yet
GHTF-Quality Management System - Medical Devices - Guidance On Corrective Action and Preventive Action and Related QMS Processes
Document26 pages
GHTF-Quality Management System - Medical Devices - Guidance On Corrective Action and Preventive Action and Related QMS Processes
Sam Moses
100% (1)
Cloud Infrastructure Regulations Compliance
Document4 pages
Cloud Infrastructure Regulations Compliance
Dimitris Papamatthaiakis
No ratings yet
NIST Privacy Framework Version1 Crosswalk SLC FIPPs NIST PF
Document23 pages
NIST Privacy Framework Version1 Crosswalk SLC FIPPs NIST PF
Spit Fire
No ratings yet
Writing and Ensuring Good Investigations
Document46 pages
Writing and Ensuring Good Investigations
james007spy
No ratings yet
Systems Security Engineering: NIST Special Publication 800-160
Document121 pages
Systems Security Engineering: NIST Special Publication 800-160
RobSindelar
No ratings yet
FDA Design Controls for Medical Devices
Document21 pages
FDA Design Controls for Medical Devices
surenu89
No ratings yet
Risk Assessment - Alliance Finance
Document47 pages
Risk Assessment - Alliance Finance
Thilina Weliwita
No ratings yet
Thank-You For Downloading The Security Risk Management Plan Template!
Document11 pages
Thank-You For Downloading The Security Risk Management Plan Template!
Roqaia Alwan
No ratings yet
Risk assessment in pharma: A guide to identifying, analyzing and preventing risks in pharmaceutical processes
Document2 pages
Risk assessment in pharma: A guide to identifying, analyzing and preventing risks in pharmaceutical processes
Prince Moni
No ratings yet
EHS Risk Management Guidebook A Practical How-To Guide
Document10 pages
EHS Risk Management Guidebook A Practical How-To Guide
Tomas Flores
No ratings yet
Validating Software For Manufacturing Processes: by David A. Vogel, PH.D
Document10 pages
Validating Software For Manufacturing Processes: by David A. Vogel, PH.D
siva sankar
No ratings yet
Computerized System Validation Master Plan Template
Document11 pages
Computerized System Validation Master Plan Template
عبدالعزيز بدر
No ratings yet
02 Validation Plan
Document14 pages
02 Validation Plan
Qc
No ratings yet
Standard Operating Procedure SDLC
Document9 pages
Standard Operating Procedure SDLC
Khedidja Ouheb
No ratings yet
Navigating USP 1058 and GAMP 5 - Similarities and Differences
Document30 pages
Navigating USP 1058 and GAMP 5 - Similarities and Differences
kousica
No ratings yet
Nonconforming Product Reporting Guidelines
Document3 pages
Nonconforming Product Reporting Guidelines
Love
No ratings yet
Enkap Quality Manual PDF
Document19 pages
Enkap Quality Manual PDF
piyusharora1964
No ratings yet
Risk Assessment Report - Proposal & Annotated Bibliography
Document7 pages
Risk Assessment Report - Proposal & Annotated Bibliography
Daniel Kounah
No ratings yet
Vision and Validation White Paper PDF
Document47 pages
Vision and Validation White Paper PDF
QC Sriprasit
No ratings yet
SOP 032 Handling of Non-Compliance v1.1 24 FEB 2017 PDF
Document15 pages
SOP 032 Handling of Non-Compliance v1.1 24 FEB 2017 PDF
Haroon Rasheed
No ratings yet
IQ protocol for Bosch GKF 2000 S capsule filling machine
Document3 pages
IQ protocol for Bosch GKF 2000 S capsule filling machine
zazlan zaini
No ratings yet
ISO 9001 2008 Audit Checklist
Document33 pages
ISO 9001 2008 Audit Checklist
Bea Mok
No ratings yet
Preventing OOS Deficiencies Guide
Document65 pages
Preventing OOS Deficiencies Guide
nsk79in@gmail.com
No ratings yet
Backup and Recovery Best Practices For Leadership and Planning
Document5 pages
Backup and Recovery Best Practices For Leadership and Planning
Vijay Jangetti Sanjeevi
No ratings yet
PDF - Js Viewer
Document15 pages
PDF - Js Viewer
David Maycotte-Cervantes
No ratings yet
VALIDATION DICTIONARY DEFINITIONS
Document57 pages
VALIDATION DICTIONARY DEFINITIONS
Prince Moni
No ratings yet
Good Documentation Practice
Document23 pages
Good Documentation Practice
Jigar Brahmbhatt
No ratings yet
Clinical Evaluation Report for Compressor Nebulizers
Document55 pages
Clinical Evaluation Report for Compressor Nebulizers
don a
No ratings yet
Ultimate Guide To CAPA - MedicalDevice
Document19 pages
Ultimate Guide To CAPA - MedicalDevice
anilsamuel0077418
100% (1)
Validation Plan for Project Name
Document7 pages
Validation Plan for Project Name
vapaps
100% (1)
Risk Assessment Report - Template
Document5 pages
Risk Assessment Report - Template
Daniel Lehman
No ratings yet
A Very Fruitful CSV Document
Document16 pages
A Very Fruitful CSV Document
kushal
No ratings yet
Foro Anual Investigación UPR - RCM 2012
Document25 pages
Foro Anual Investigación UPR - RCM 2012
bibliotecarcm
No ratings yet
Electronic Data Backup SOP
Document8 pages
Electronic Data Backup SOP
MLastTry
No ratings yet
CAPA Processes for Medical Device Quality
Document56 pages
CAPA Processes for Medical Device Quality
Kristof MC
No ratings yet
6 Methods of Verifying CAPA
Document3 pages
6 Methods of Verifying CAPA
Mariver Llorente
No ratings yet
Data and Database Integrity Testing
Document3 pages
Data and Database Integrity Testing
Mounir Ben Mohamed
No ratings yet
6.E Installation Qualification (IQ) : Here You Will Find Answers To The Following Questions
Document10 pages
6.E Installation Qualification (IQ) : Here You Will Find Answers To The Following Questions
Filip
No ratings yet
A Perspective Study of Warning Letters On Data Integrity Issued by FDA Between 2017 and 2019
Document7 pages
A Perspective Study of Warning Letters On Data Integrity Issued by FDA Between 2017 and 2019
Editor IJTSRD
No ratings yet
05 Risk Assessment
Document12 pages
05 Risk Assessment
Qc
No ratings yet
FDA Validation Tool Kit Flyer - Email
Document2 pages
FDA Validation Tool Kit Flyer - Email
dudelondon
No ratings yet
Software Validation Verification and Testing
Document6 pages
Software Validation Verification and Testing
Yogesh Bansal
No ratings yet
Computerised System Validation
Document41 pages
Computerised System Validation
monsepack
100% (2)
RCA Framework Root Cause Analysis
Document11 pages
RCA Framework Root Cause Analysis
benaoumeur benouna
100% (1)
Selecting, Implementing and Using FDA Compliance Software Solutions
Document29 pages
Selecting, Implementing and Using FDA Compliance Software Solutions
Sireesha
No ratings yet
Quality Metrics Presentation - June 28 2016 Meeting - Final
Document31 pages
Quality Metrics Presentation - June 28 2016 Meeting - Final
leonardq1
No ratings yet
Adopting Agile Practices When Developing Medical Device Software
Document14 pages
Adopting Agile Practices When Developing Medical Device Software
maryoumm22
No ratings yet
Gross Lab Failures
Document9 pages
Gross Lab Failures
Nancy Lonnroth
No ratings yet
1011 Boatman FDA Validation
Document20 pages
1011 Boatman FDA Validation
Darren Tan
0% (1)
User Requirements Template RAJA
Document25 pages
User Requirements Template RAJA
drs_mdu48
0% (1)
3BSE077527 en FDA 21 CFR Part 11 Electronic Records and Signatures - Solutions For The Life Sciences Industry
Document12 pages
3BSE077527 en FDA 21 CFR Part 11 Electronic Records and Signatures - Solutions For The Life Sciences Industry
Neo
No ratings yet
Malaysian Sustainable Palm Oil (Mspo) Scheme Risk Management
Document14 pages
Malaysian Sustainable Palm Oil (Mspo) Scheme Risk Management
Max Donysius
No ratings yet
Installation Qualification Report
Document5 pages
Installation Qualification Report
iyappan i.p.s
No ratings yet
Computer System Validation in The Perspective of T
Document7 pages
Computer System Validation in The Perspective of T
ttugce29
No ratings yet
ICH Stability Zones
Document1 page
ICH Stability Zones
Rahul_Bhatia_9656
No ratings yet
Basics of Defining Processes
Document18 pages
Basics of Defining Processes
Faried Putra Sandianto
No ratings yet
Deviation & OOS
Document56 pages
Deviation & OOS
Rakesh
No ratings yet
Oracle Lockbox - Cash Application: Author: Karun Jain Date: 25-Dec-2008 Project
Document16 pages
Oracle Lockbox - Cash Application: Author: Karun Jain Date: 25-Dec-2008 Project
Pradeep Menocha
No ratings yet
Antioxidant Activity and Isolation of Xanthine Oxidase Inhibitor From Ruellia Tuberosa L. Leaves
Document5 pages
Antioxidant Activity and Isolation of Xanthine Oxidase Inhibitor From Ruellia Tuberosa L. Leaves
Sandi Vico
No ratings yet
Test Chapter 2
Document2 pages
Test Chapter 2
Nguyễn Thanh
No ratings yet
QPR - Technical Cleanliness (TC) Requirements
Document12 pages
QPR - Technical Cleanliness (TC) Requirements
Oliver Steinrötter
No ratings yet
89EnE Term 2 Film Study Summative Assessment
Document2 pages
89EnE Term 2 Film Study Summative Assessment
mariia.tkachuk2022
No ratings yet
Alien Word Choice Lesson by Lindy McBratney
Document2 pages
Alien Word Choice Lesson by Lindy McBratney
Lindy McBratney
No ratings yet
Twincat Manual
Document46 pages
Twincat Manual
KahMun Lim
No ratings yet
Book of Abstracts LUMEN 2013 - Editura Lumen
Document273 pages
Book of Abstracts LUMEN 2013 - Editura Lumen
Sergiu Chetruşca
No ratings yet
Lead 1 Complaint
Document84 pages
Lead 1 Complaint
the kingfish
No ratings yet
Rate of Respiration in Small Invertebrates
Document2 pages
Rate of Respiration in Small Invertebrates
tahjsalmon
No ratings yet
Welcome: Mtap-Deped Saturday Mathematics Program Grade V Session 1
Document43 pages
Welcome: Mtap-Deped Saturday Mathematics Program Grade V Session 1
BlytheF
No ratings yet
G8DLL - Q1W1 - LC01 (Repaired)
Document10 pages
G8DLL - Q1W1 - LC01 (Repaired)
Arlene Gacula
No ratings yet
Speaking Part 2 Useful Phrases
Document3 pages
Speaking Part 2 Useful Phrases
Martin Milenov
No ratings yet
Graduate Study in Mechanical Engineering: Guide To
Document25 pages
Graduate Study in Mechanical Engineering: Guide To
Abhishek
No ratings yet
Econometrics I: Professor William Greene Stern School of Business Department of Economics
Document47 pages
Econometrics I: Professor William Greene Stern School of Business Department of Economics
Anonymous 1tv9Msp
No ratings yet
CECA Technical For Ethanol Drying Rev1
Document2 pages
CECA Technical For Ethanol Drying Rev1
Son Le Thanh
No ratings yet
Supervisor Manual 3
Document48 pages
Supervisor Manual 3
infinity focus
No ratings yet
Administrative Thinkers
Document43 pages
Administrative Thinkers
himanshuias
No ratings yet
Easy
Document2 pages
Easy
Prakhar Aggarwal
No ratings yet
SFX Machine Pro Read Me
Document6 pages
SFX Machine Pro Read Me
JonOstiguy
No ratings yet
R Prague Lesson 1
Document18 pages
R Prague Lesson 1
erwin1bakker
No ratings yet
Es Lab Manual-Jntuk
Document22 pages
Es Lab Manual-Jntuk
Melissa Guerra
No ratings yet
New Joinee Induction Feedback Form
Document2 pages
New Joinee Induction Feedback Form
Indu Sumesh
No ratings yet
Interactive Curve Design Using Digital French Curves
Document8 pages
Interactive Curve Design Using Digital French Curves
wupuwei
No ratings yet
Decimal Fraction
Document15 pages
Decimal Fraction
sathish14singh
No ratings yet
International Rice Research Newsletter Vol.3 No.3
Document24 pages
International Rice Research Newsletter Vol.3 No.3
ccquintos
No ratings yet
Iso Draft Attas
Document2 pages
Iso Draft Attas
Sudheep
No ratings yet
Daftar Pustaka PDF
Document4 pages
Daftar Pustaka PDF
Puput mopangga
No ratings yet
Side Mounted Handwheel
Document20 pages
Side Mounted Handwheel
aaa
No ratings yet
ESO 208A: Introduction to Computational Methods
Document26 pages
ESO 208A: Introduction to Computational Methods
Aswer
No ratings yet