Risk management and the integrity of information
WHAT IS IT ABOUT?
Digital transformation and the increasing influence of technology on both organizational operations and security, makes information security a true new-era challenge, involving a wide range of aspects, from policy and procedures, to risk management and security control.
- The CISO who is appointed to improve risk management.
- The auditor who needs to give an independent and objective outside view.
- The CEO who wants to move from the status quo to innovation.
- The IT leader that wants to use the new technology to drive innovation.
- The project manager who needs to evaluate the results of a project.
the unknowns that need to be identified and managed
how do you know what is risk?
who needs to know about it?
where are they coming from?
when does this become a crisis?
After you have downloaded this questionnaire, you can - in your Toolbox - edit, add/delete, and translate questions & answers to your liking. Clicking the "Help me PRAIORITIZE" buttons in the Toolbox activates our A.I. to help you finish your masterpiece..
Q. Is the impact of identified risk taken into account in determining how to proceed with a project?
- We evaluate the risks involved during project planning
- We also evaluate and discuss risks involved during project execution
Q. Do you have a formal process for identifying risks?
- There is a specific process for high risk projects
- For all projects we have a formal process to identify risks
If you feel you need outside support after conducting your assessment, we recommend the firms that have written the below mentioned whitepapers. Not having a paper selected does NOT mean that a firm does not give good advice.
- Respondent profiles for a helicopter view of your audience.
- A maturity model with which algorithms calculate a six times smarter improvement target (compared to when you leave that to a human).
- Improvement suggestions (per question) how to move from one answer to another
- Suggested follow-on projects. After all, moving your organization from A to B might require more than just doing an assessment.