From the course: Complete Guide to Open Source Security
Join today to access over 24,500 courses taught by industry experts.
Preparing your risk context
From the course: Complete Guide to Open Source Security
Preparing your risk context
- [Sam] We're in Risk Management, Asset Risk Management, and the first thing we need to do to activate our risk management system is to configure our risk context. At the top right, we'll expand Settings, and we'll start with Classification Types. We'll add two types, (keyboard clacking) Financial Impact and Likelihood. (keyboard clacking) we could add additional impact types, such as reputation, but we'll just keep this simple. We'll now create our risk classifications. We're going to be using a three-by-three matrix for our risk calculations. So we need to create settings for the three levels of High, Medium, and Low for both Financial and Likelihood types. So we'll start with Financial Impact and High, and let's set our criteria as High impact is a loss of funds or business of greater than $100,000, and we'll set the value for that to be 3. And we'll add Financial Impact, Medium. Medium impact is a loss of funds or business in the range 10,000 to 100,000. And we'll put the…
Download courses and learn on the go
Watch courses on your mobile device without an internet connection. Download courses using your iOS or Android LinkedIn Learning app.
Contents
-
-
-
-
(Locked)
Introduction to GRC1m 13s
-
Architecting with ArchiMate5m 52s
-
(Locked)
Modelling security with Archi2m 22s
-
(Locked)
Adding security to the model3m 27s
-
(Locked)
Security risk management with SimpleRisk3m 9s
-
(Locked)
Taking SimpleRisk for a spin7m 34s
-
(Locked)
Using eramba for GRC4m 18s
-
(Locked)
Configuring the eramba system8m 31s
-
(Locked)
Preparing your risk context9m 11s
-
(Locked)
Setting up your assets3m 15s
-
(Locked)
Entering risks into eramba3m 35s
-
(Locked)
-
-
-
-
-
-
-
-
-
-
-
-