Description
This is a segment in our ongoing series on cyber risks. This segment is the first in the series of segments that will address the procedures for preparing a cyber risk assessment. For a cyber risk assessment, it is essential to establish a baseline for identifying critical components that must be evaluated. As in other courses, we will utilize the National Institute of Standards and Technology (NIST) Framework as a template to assist in discussing the concepts to be considered when performing a cyber risk assessment.
This segment takes a deep dive into the “identify” function required to properly perform a cyber risk assessment. We evaluate the categories within the function of:
- Asset management
- Business environment
- Governance
- Risk assessment
- Risk Management (RM) strategy
- Supply chain risk management
Within each of these categories we examine specific objectives and procedures that should be considered in order to properly prepare your cyber risk assessment. Participants will come away with a deep understanding of the various processes required to properly identify cyber risks for their organization.
Training for all programs related to cyber security by this trainer are utilizing the framework of the National Institute of Standards and Technology (NIST) as a model. This information is freely available in the public domain. For more detailed information on the framework please refer to NIST.org.
