Latest research in risk assessment

Tags:
Risk assessment
I want to know about the recent risk assessment framework/approach, models & risk assessment metrices is need to be developed for software / information security in multiuser enviornment. What should be latest approach of risk assessment.

Answer Wiki

Thanks. We'll let you know when a new response is added.

There are books on this. I will try to summarize.

For a proper risk assessment, you need several things.

Document your assets. People, knowledge, intellectual property, code, data, documents, structures, motivation/morale, real property, and legality (!) can all be assets in need of protection.

Document the threat. Know what things ‘want’ to cause damage. Weather, equipment failure (air conditioning, power, malicious employee with access, flaky software, etc.

Use a matrix to determine what risks are highest. Threat (what may attack) times risk (likelihood that a threat will actually attack) gives you risk. But wait, there is a third dimension; impact.

By determining risk and impact, you have the tools needed to take effective steps to mitigate the risks.

Risk assessment is both a science and an art form. It would be best for you to buy a book and do some studying because I have only touched on this very lightly.

Discuss This Question:  

 
There was an error processing your information. Please try again later.
Thanks. We'll let you know when a new response is added.
Send me notifications when members answer or reply to this question.

REGISTER or login:

Forgot Password?
By submitting you agree to receive email from TechTarget and its partners. If you reside outside of the United States, you consent to having your personal data transferred to and processed in the United States. Privacy

Forgot Password

No problem! Submit your e-mail address below. We'll send you an e-mail containing your password.

Your password has been sent to:

To follow this tag...

There was an error processing your information. Please try again later.

REGISTER or login:

Forgot Password?
By submitting you agree to receive email from TechTarget and its partners. If you reside outside of the United States, you consent to having your personal data transferred to and processed in the United States. Privacy

Thanks! We'll email you when relevant content is added and updated.

Following