Risk Assessment (RA)

Risk assessment is the determination of the probability that threats exploits vulnerabilities in the internal control system causing damage to process’ assets.

• Asset Valuation: Assigning value to process and service´s assets beyond simple economic cost
• Asset Dependencies: Identification of the dependencies between assets from a service or process and between assets of different services and processes
• Threat Identification: Seek and identify threats that could compromise the value of assets, processes, services or products
• Internal Control assessment:Identification of the internal control necessary to protect the assets, processes, services or products from identified threats
• Vulnerability Assessment: To identify vulnerabilities in the internal control system that could be exploited by threats
• Risk Analysis: To establish the probability of a threat to exploit a vulnerability and destroy or degrade an asset’s value if no countermeasure is taken (Risk environment)
• Risk Environment Report: The deliverable is a complete report, easy to read and follow, with feasible recommendations that will support client’s decision about managing the risk environment and protect assets, processes and services necessary to achieve its goals, mission and vision through a cost effective internal control system
• Total Duration: Depends on client size and location(s)