Introduction
Risk assessment is an intensive process that involves defining the nature of the risks, their location, and ways of mitigating the risks recognized to allow smooth operation of the organization. The risk assessor must identify every system, process, and individual included. In addition, he/she should identify the relevant vulnerabilities and threats (Pompon, 2016). Risk assessment considers every aspect of information security that entails the environmental and physical, management and administrative, in addition to the technical measure.
Risk Assessment methodologies
Asset Audit The approach considers the assets that are part of an organization and establishes if every asset is being safeguarded sufficiently. This ...