Please enable JavaScript.
Coggle requires JavaScript to display documents.
Chapter 11: Turning a Risk Assessment into a Risk Mitigation Plan - Coggle…
Chapter 11: Turning a Risk Assessment into a Risk Mitigation Plan
Reviewing the Risk Assessment for the IT Infrastructure
Overlapping Countermeasures
Risk Assessments: Understanding Threats and Vulnerabilities
Identifying Countermeasures
Controlling physical access to employee areas
Creating a script to check account usage
Creating an account management policy
Translating a Risk Assessment into a Risk Mitigation Plan
Cost to Implement
Initial Purchase Cost
Facility Cost
Installation Costs
Training Costs
Time to Implement
Operational Impact
Prioritizing Risk Elements That Require Risk Mitigation
Using a Threat Likelihood/Impact Matrix
Prioritizing Countermeasures
Verifying Risk Elements and How They Can Be Mitigated
Performing a Cost-Benefit Analysis on the Identified Risk Elements
Calculating the CBA
A CBA Report
Implementing a Risk Mitigation Plan
Staying Within Budget
Staying on Schedule
Following Up on the Risk Mitigation Plan
Ensuring Countermeasures Have Been Implemented
Ensuring Security Gaps Have Been Closed
Best Practices for Enabling a Risk Mitigation Plan from the Risk Assessment
Including current countermeasures in analysis
Controlling costs
Prioritizing countermeasures
Controlling the schedule
Redoing CBAs if new costs are identiied
Staying within the scope
Following up