Professional Documents
Culture Documents
STRATEGIES.
What is Risk Management?
1. Assess
Assets
5. Determine
2. Assess Threats 4. Assess Risk Countermeasure Make RM Decision
s
3. Assess Vulnerability
The above process will allow you to,
1. Identify critical assets in need of protection.
2. Assess various types of threats to critical assets.
3. Determine site specific vulnerability related to a particular type of threat.
4. Determine the consequences or ramifications of undesirable events upon
continuing operations.
5. Estimate relative risk levels associated with specific undesirable events.
6. Identify specific risk mitigate activities and countermeasures that could
be used to reduce the likelihood of an undesirable event.
7. Analyze the costs and benefits of various risk mitigation strategies.
8. Develop a communication strategy to present risk analysis results and
countermeasures options or recommendations to senior management.
Key terms.
Assets: Any person, facility, material, information or activity that has a positive value for
its owners.
Threat: Any indication or event with the potential to cause the loss or damage to
as assets.
1. People.
2. Facilities.
3. Equipment and materials.
4. Information.
5. Activities and operations.
Risk Management Process Flow.
People
Activities
Information
Facilities
equipment
Critical Potential Undesirable Events Impact level
Assets
Activities
Information
Facilities
Equipment
rt
People
Activities
Information
Facilities
Equipment
Undesirable Existing Related Countermeasures New Risk
Events Risk Level Vulnerabilities Options Level
Threat Assessment Chart
People
Activities
Information
Facilities
Equipment
Potential Undesirable Events Impact Threat Vuln. Overall Risk Acceptable
Rating Rating Rating Rating