Professional Documents
Culture Documents
Éléments
Résultat 0 % 1 Actions 0
signalés
Prepared by Justine J.
1.Élémentssignalés
Éléments signalés 1 signalés
Audit / Risk Assessment / Click Add Vulnerability (+) after you have identified a vulnerability or threat
source / Vulnerability 2 / Risk rating
Head of IT
Facility Manager
Describe how users access the system and their intended use
of the system
staff access the system by logging in to their designated desktops, management have their
designated laptops
2.2.RiskAssessment
Risk Assessment 1 signalés
2.2.1.ClickAddVulnerability(+)afteryouhaveidentifiedavulnerabilityorthreatsource
Click Add Vulnerability (+) after you have 1 signalés
identified a vulnerability or threat source
2.2.1.1.Vulnerability1
Vulnerability 1
2.2.1.1.1.ThreatSource&Vulnerability
Threat Source & Vulnerability
Observation
Photo 1
Existing controls
Consequence Medium
Likelihood Unlikely
Reinforce the importance of locking the PC when not in use. I will talk to Anne and remind her of
our directive to improve our information security for ISO 27001 certification.
2.2.1.2.Vulnerability2
Vulnerability 2 1 signalés
2.2.1.2.1.ThreatSource&Vulnerability
Threat Source & Vulnerability
Observation
Photo 2 Photo 3
Existing controls
This was a laptop issued last month and should already have the default password before it was
handed to the new staff.
2.2.1.2.2.Riskrating
Risk rating 1 signalés
Consequence High
Likelihood Likely
Risk rating High
2.2.1.2.3.RecommendedControls
Recommended Controls
Will meet with Dan H. who issued the new laptop and his supervisor Trevor N. Will advise about a
possible warning.
2.2.1.3.Vulnerability3
Vulnerability 3
2.2.1.3.1.ThreatSource&Vulnerability
Threat Source & Vulnerability
Observation
east exit's newly installed glass door magnetic locks are malfunctioning
Photo 4
Existing controls
Consequence High
Likelihood Unlikely
Facilities need to fix the magnetic lock. Exit will guarded 24/7 but we will not allow access to this
door until this is fixed.
2.3.Completion
Completion
Recommendations
Majority of staff are still on holiday vacation but we found plenty of security risks today. Will
conduct a meeting when everybody's back next week to reinforce the directive to get our ISO
27001 certification.
Signature
Justine J.
04.01.2019 14:26 PST
3.Résumédesmédias
Résumé des médias
Photo 1 Photo 2
Photo 3 Photo 4