Minimum Viable Risk Management Program

Minimum Viable Risk Management Program

BSidesLV via YouTube Direct link

Risk Management Policy

24 of 27

24 of 27

Risk Management Policy

Class Central Classrooms beta

YouTube videos curated by Class Central.

Classroom Contents

Minimum Viable Risk Management Program

Automatically move to the next video in the Classroom when playback concludes

  1. 1 Intro
  2. 2 Unsolved problem in information security
  3. 3 Threat event
  4. 4 Vulnerability
  5. 5 Secondary loss event
  6. 6 Why have a risk management program?
  7. 7 Current options for small/immature orgs
  8. 8 Basic plan
  9. 9 Decide on scope
  10. 10 Inventory assets & owners
  11. 11 Sort the inventory by granularity
  12. 12 Example granularities
  13. 13 Perform Binary Risk Assessment
  14. 14 Binary Risk Assessment as part of a program
  15. 15 What is the purpose of risk assessment?
  16. 16 Asset owners decide what to do about low & medium risks
  17. 17 How to treat risk
  18. 18 What's the right level to sign off on a risk?
  19. 19 Likelihood/frequency of loss questions
  20. 20 Magnitude of loss questions
  21. 21 Binary Risk Assessment weaknesses
  22. 22 Add Factor Analysis of Information Risk
  23. 23 External Documentation
  24. 24 Risk Management Policy
  25. 25 Templates
  26. 26 Risk treatment decision template
  27. 27 Questions?

Never Stop Learning.

Get personalized course recommendations, track subjects and courses with reminders, and more.

Someone learning on their laptop while sitting on the floor.