Title: Risk Management, Security Compliance, and Audit Controls
Abstract: This chapter deals with the risk management, security compliance, and audit controls. Major methods of risk measurement and audit are discussed. One must understand the risk management process as a whole and how controls may be implemented to eliminate or mitigate the risk of individual events. Risk assessment is fundamental to the security of any organization. It is essential in ensuring that controls and expenditure are fully commensurate with the risks to which the organization is exposed. The risk analysis process is outlined that allows the organization to determine risk based on threats and vulnerabilities. The process of risk analysis has following steps: threat analysis, vulnerability analysis, business impact analysis, and likelihood analysis. The auditor with the help of risk analysis will be able to classify the severity of the risk and assign importance to each risk.
Publication Year: 2008
Publication Date: 2008-01-01
Language: en
Type: book-chapter
Indexed In: ['crossref']
Access and Citation
AI Researcher Chatbot
Get quick answers to your questions about the article from our AI researcher chatbot