Risk assessments are an essential component of effective information security management: only by adequately evaluating the threats you face will you be able to establish a suitable security posture that can protect your organisation’s critical data assets – and profits. PwC’s 2014 Global State of Information Security Survey found that the number of detected incidents increased 48% and that corresponding financial losses increased 34% compared to 2013’s results.
Tackling an enterprise-wide information security risk assessment can be dauntingly complicated. Fortunately, vsRisk™, the ISO 27001:2013-compliant risk assessment software tool, has been proven to save time, effort and expense when tackling complex information security risk assessments.
Tony Drewitt, IT Governance’s head of consultancy, will host a free webinar on 6 November 2014 at 1500 GMT explaining how to conduct risk assessments using vsRisk.
The webinar will cover the following elements:
- An introduction to the risk assessment process.
- Identifying risks and setting the risk acceptance criteria.
- Evaluating and analysing the risks.
- Considering business, legal and contractual obligations.
- Formulating an adequate risk response.
- Selecting the appropriate controls.
- Reporting and feedback.
Find out how to conduct a risk assessment compliant with ISO/IEC 27001 with our free webinar: ‘Conducting an information security risk assessment with vsRisk’.
6 November 2014