The ISO/IEC 27001 standard requires an information security risk survey and assessment in Chapter 6. This template package provides a comprehensive, customisable process description for assessing and addressing information security risks.
Template InfoSec Risk Management Method according to ISO 27001
€ 320,00
excl. VAT
Description
The method description covers the complete life cycle of a risk analysis, from the identification of hazards and values, through the definition of risk owners, to the calculation of probabilities of occurrence and impacts, and criteria for risk acceptance.
In the area of risk treatment, the method relies on the common strategies of avoidance, reduction, offloading (e.g. through insurance) and acceptance.
The template comprises approx. 7 pages as well as a list of elementary hazards and accompanying tabular templates for recording risks and tracking their measures. The method has been tested several times in ISMS / ISO 27001 certifications.
Language: German / English
Licence: Digital template in Microsoft Office format with right of use for one company. The template may be modified as desired. No resale, no passing on or commercial use by consulting companies is permitted.
Additional information
| Language | German, English |
|---|
