Vision
Establishment
Procedures
Implementation
Monitoring
Messages
About ISMS
Why ISMS
Implementation
Role of Mgt.
Training
Security Forum
Success Factors
PDCA Model
Learn ISMS

RISK ASSESSMENT

Objective:
To define the process of carrying out risk assessment against information assets and business processes

It also deals with defining the improvement and treatment of risk

Scope:
It is restricted to the methods, approaches and processes for risk assessment of KKI core business processes and information assets

Description:
After the identification of Information assets, business processes for all departments were identified

Comprehensive risk assessment exercise has been done for both information assets and business processes

Outcome of RAP of information assets is the risk values and controls while that of business processes is the identification of most significant business processes of KKI with respect to their impact in case of any business interruption

Risk formula, risk value and threshold values have been developed and identified