+44 (0)1252 377321 | info@activityim.com

Systems. Secure.

Information Security Risk Assessment

A risk assessment provides a structured approach to selecting security measures.

Security risk assessments are often seen as something of a black art.  Our approach is that risk assessments should support security decision making – and as such should be clear, understandable and easily maintained.

A security risk assessment considers the information security threats to your organisation, their potential impact on you and supports the selection of appropriate security measures. 

The benefits of a risk assessment are:

  • A structured approach to selecting security controls;
  • Justification for security spend;
  • Selection of appropriate security controls based on the needs of the organisation; and
  • It provides an audit trail showing due diligence for security decisions.

A risk assessment is fundamental to information security management systems such as ISO 27001.

Risk assessments needs to be combined with Risk Management to deliver effective information security management.

Our CLAS consultants deliver security risk assessments for a wide range of public and private sector organisations.  To benefit from our expertise contact a consultant on 01252 377321 or e-mail info@activityim.com