Rating: 4 out of 5 stars
4/5
Ebook51 pages22 minutes
Risk Assessment for Asset Owners
By Alan Calder and Steve Watkins
Rating: 4.5 out of 5 stars
4.5/5
()
About this ebook
Risk assessment is at the heart of risk management, and the two together form the core competences of information security management. This title is a guide to the ISO27001 risk assessment, designed to assist asset owners and others who are working within an ISO27001/ISO17799 framework to deliver a qualitative risk assessment. It conforms with the guidance provided in BS7799-3:2006 and NIST SP 800-30.
Author
Alan Calder
Alan Calder is a leading author on IT governance and information security issues. He is the CEO of GRC International Group plc, the AIM-listed company that owns IT Governance Ltd. Alan is an acknowledged international cyber security guru. He has been involved in the development of a wide range of information security management training courses that have been accredited by the International Board for IT Governance Qualifications (IBITGQ). He is a frequent media commentator on information security and IT governance issues, and has contributed articles and expert comment to a wide range of trade, national and online news outlets.
Read more from Alan Calder
Information Security Risk Management for ISO 27001/ISO 27002, third edition IT Governance: A Pocket Guide Rating: 3 out of 5 stars3/5IT Governance: Implementing Frameworks and Standards for the Corporate Governance of IT Rating: 4 out of 5 stars4/5ISO/IEC 38500: The IT Governance Standard Rating: 5 out of 5 stars5/5EU GDPR - A pocket guide, second edition Rating: 0 out of 5 stars0 ratingsPCI DSS: A pocket guide, sixth edition Rating: 0 out of 5 stars0 ratingsISO 27001/ISO 27002: A guide to information security management systems Rating: 0 out of 5 stars0 ratingsInformation Security Risk Management for ISO27001/ISO27002 Rating: 4 out of 5 stars4/5Selling Information Security to the Board: A Primer Rating: 0 out of 5 stars0 ratingsCyber Essentials: A Pocket Guide Rating: 5 out of 5 stars5/5PCI DSS: A Pocket Guide Rating: 2 out of 5 stars2/5The EU Data Protection Code of Conduct for Cloud Service Providers: A guide to compliance Rating: 0 out of 5 stars0 ratingsThe Case for ISO27001:2013 Rating: 1 out of 5 stars1/5Cyber Essentials: A guide to the Cyber Essentials and Cyber Essentials Plus certifications Rating: 0 out of 5 stars0 ratingsNetwork and Information Systems (NIS) Regulations - A pocket guide for operators of essential services Rating: 0 out of 5 stars0 ratingsPCI DSS: A Pocket Guide, fourth edition Rating: 0 out of 5 stars0 ratingsNine Steps to Success: North American edition: An ISO 27001 Implementation Overview Rating: 0 out of 5 stars0 ratingsIT Governance Critical Issues Series: Cyber Security Rating: 0 out of 5 stars0 ratingsCompliance for Green IT: A Pocket Guide Rating: 5 out of 5 stars5/5IT Regulatory Compliance in the UK Rating: 0 out of 5 stars0 ratingsThe Green Office: A Business Guide Rating: 0 out of 5 stars0 ratingsPCI DSS: A Pocket Guide - 3rd edition Rating: 0 out of 5 stars0 ratingsA concise introduction to the NIS Directive: A pocket guide for digital service providers Rating: 0 out of 5 stars0 ratingsNetwork and Information Systems (NIS) Regulations - A pocket guide for digital service providers Rating: 0 out of 5 stars0 ratingsThe Green Agenda: A Business Guide Rating: 0 out of 5 stars0 ratings
Related to Risk Assessment for Asset Owners
Related ebooks
ISO27001:2013 Assessments Without Tears Rating: 3 out of 5 stars3/5Security Leader Insights for Risk Management: Lessons and Strategies from Leading Security Professionals Rating: 0 out of 5 stars0 ratingsInformation Security Risk Management for ISO27001/ISO27002 Rating: 4 out of 5 stars4/5ISO22301: A Pocket Guide Rating: 4 out of 5 stars4/5Application security in the ISO27001:2013 Environment Rating: 4 out of 5 stars4/5Business Practical Security Rating: 0 out of 5 stars0 ratingsInternational Security Programs Benchmark Report: Research Report Rating: 3 out of 5 stars3/5Fundamentals of Information Security Risk Management Auditing: An introduction for managers and auditors Rating: 5 out of 5 stars5/5An Introduction to Information Security and ISO27001:2013: A Pocket Guide Rating: 4 out of 5 stars4/5Security Controls Evaluation, Testing, and Assessment Handbook Rating: 5 out of 5 stars5/5Information Security Governance: A Practical Development and Implementation Approach Rating: 0 out of 5 stars0 ratingsBusiness Continuity Management Systems: Implementation and certification to ISO 22301 Rating: 0 out of 5 stars0 ratingsThe Cybersecurity Maturity Model Certification (CMMC) – A pocket guide Rating: 0 out of 5 stars0 ratingsThe Case for ISO27001:2013 Rating: 1 out of 5 stars1/5Information Protection Playbook Rating: 0 out of 5 stars0 ratingsBusiness Continuity: Playbook Rating: 0 out of 5 stars0 ratingsISO 27001 Controls – A guide to implementing and auditing Rating: 5 out of 5 stars5/5NIST Cybersecurity Framework: A pocket guide Rating: 0 out of 5 stars0 ratingsSecure Your Business: Insights to Governance, Risk, Compliance & Information Security Rating: 0 out of 5 stars0 ratingsRisk Management Framework: A Lab-Based Approach to Securing Information Systems Rating: 2 out of 5 stars2/5ISO 22301: 2019 - An introduction to a business continuity management system (BCMS) Rating: 4 out of 5 stars4/5Security Metrics Management: Measuring the Effectiveness and Efficiency of a Security Program Rating: 0 out of 5 stars0 ratingsAuthorizing Official Handbook: for Risk Management Framework (RMF) Rating: 0 out of 5 stars0 ratingsISO27001/ISO27002:2013: A Pocket Guide Rating: 4 out of 5 stars4/5Risk Management and Information Systems Control Rating: 5 out of 5 stars5/5Guide to effective risk management 3.0 Rating: 0 out of 5 stars0 ratingsISO/IEC 27701:2019: An introduction to privacy information management Rating: 4 out of 5 stars4/5Information Security Breaches: Avoidance and Treatment based on ISO27001 Rating: 0 out of 5 stars0 ratingsThe Chief Security Officer’s Handbook: Leading Your Team into the Future Rating: 0 out of 5 stars0 ratingsApplication Security in the ISO27001 Environment Rating: 0 out of 5 stars0 ratings
Business For You
The Richest Man in Babylon: The most inspiring book on wealth ever written Rating: 5 out of 5 stars5/5Law of Connection: Lesson 10 from The 21 Irrefutable Laws of Leadership Rating: 4 out of 5 stars4/5Becoming Bulletproof: Protect Yourself, Read People, Influence Situations, and Live Fearlessly Rating: 4 out of 5 stars4/5Summary of J.L. Collins's The Simple Path to Wealth Rating: 5 out of 5 stars5/5Just Listen: Discover the Secret to Getting Through to Absolutely Anyone Rating: 4 out of 5 stars4/5Collaborating with the Enemy: How to Work with People You Don’t Agree with or Like or Trust Rating: 4 out of 5 stars4/5Set for Life: An All-Out Approach to Early Financial Freedom Rating: 4 out of 5 stars4/5Crucial Conversations Tools for Talking When Stakes Are High, Second Edition Rating: 4 out of 5 stars4/5Nickel and Dimed: On (Not) Getting By in America Rating: 4 out of 5 stars4/5Crucial Conversations: Tools for Talking When Stakes are High, Third Edition Rating: 4 out of 5 stars4/5Carol Dweck's Mindset The New Psychology of Success: Summary and Analysis Rating: 4 out of 5 stars4/5Capitalism and Freedom Rating: 4 out of 5 stars4/5The Five Dysfunctions of a Team: A Leadership Fable, 20th Anniversary Edition Rating: 4 out of 5 stars4/5The Intelligent Investor, Rev. Ed: The Definitive Book on Value Investing Rating: 4 out of 5 stars4/5Lying Rating: 4 out of 5 stars4/5High Conflict: Why We Get Trapped and How We Get Out Rating: 4 out of 5 stars4/5Leadership and Self-Deception: Getting out of the Box Rating: 4 out of 5 stars4/5Your Next Five Moves: Master the Art of Business Strategy Rating: 5 out of 5 stars5/5The Catalyst: How to Change Anyone's Mind Rating: 4 out of 5 stars4/5Emotional Intelligence: Exploring the Most Powerful Intelligence Ever Discovered Rating: 5 out of 5 stars5/5Tools Of Titans: The Tactics, Routines, and Habits of Billionaires, Icons, and World-Class Performers Rating: 4 out of 5 stars4/5Robert's Rules of Order: The Original Manual for Assembly Rules, Business Etiquette, and Conduct Rating: 4 out of 5 stars4/5Summary of Tiffany Aliche's Get Good with Money Rating: 4 out of 5 stars4/5Buy, Rehab, Rent, Refinance, Repeat: The BRRRR Rental Property Investment Strategy Made Simple Rating: 5 out of 5 stars5/5Confessions of an Economic Hit Man, 3rd Edition Rating: 5 out of 5 stars5/5How to Get Ideas Rating: 5 out of 5 stars5/5Red Notice: A True Story of High Finance, Murder, and One Man's Fight for Justice Rating: 4 out of 5 stars4/5
Related podcast episodes
Is enhanced hardware security the answer to ransomware? [CyberWire-X] 100% found this document useful#60 What is ISO 27017: Controls for Cloud Services 0% found this document usefulHow To Succeed With Privacy By Design 0% found this document usefulCybersecurity and Hacking with Kevin Mitnick 0% found this document useful083: SMS Pt 4 - What Does ISO 45001 Require?: Safety Management System overview 0% found this document useful080: SMS Pt 1 - Safety Management System Defined: What is a Safety Management System (SMS)? 0% found this document useful#63 Epiq's Information Security Journey: With guest Dinesh Sharma 0% found this document usefulJohn Cusimano: Leveraging ISA/IEC 62443 to Quantify OT Risk 0% found this document useful
Related articles
Cyber Security IS A SHARED RESPONSIBILITY AT THE C-LEVEL Inc.Article
Cyber Security IS A SHARED RESPONSIBILITY AT THE C-LEVEL
Sep 21, 2016
Data breaches can have far-reaching repercussions; protecting against them is a companywide mandate
2 min readMaking A Corrosion Strategy Facility ManagementArticle
Making A Corrosion Strategy
Feb 25, 2018
The degradation of private and public assets and infrastructure continues to have a major economic impact on industry and the wider community. In Australia, the yearly cost of asset maintenance is estimated to be approximately $32 billion, with $8 bi
4 min readIndustry Assurance Schemes Australasian Transport News (ATN)Article
Industry Assurance Schemes
Dec 16, 2019
4 min readHow Do You Know You Are Okay? NZBusiness and ManagementArticle
How Do You Know You Are Okay?
May 27, 2019
2 min read“DORA Is A Force For Good And Will Help Businesses To Make Better Decisions, Faster” PC Pro MagazineArticle
“DORA Is A Force For Good And Will Help Businesses To Make Better Decisions, Faster”
Apr 10, 2022
6 min readGlobal Cybersecurity Guide For Directors NZBusiness and ManagementArticle
Global Cybersecurity Guide For Directors
Apr 25, 2021
Cybersecurity failure is a “clear and present danger” and critical global threat, yet responses from board directors have been fragmented, risks not fully understood and collaboration between industries limited, according to the World Economic Forum.
2 min readDOUBLE MATERIALITY: Realising the Value of a Comprehensive Information Management System The European Business ReviewArticle
DOUBLE MATERIALITY: Realising the Value of a Comprehensive Information Management System
May 31, 2023
4 min readAsk The Expert Facility ManagementArticle
Ask The Expert
Mar 28, 2019
In our most recent edition of FM magazine, we outlined our plans to introduce a new column, ‘Ask the Expert’. We are excited at the prospect that this column will help our FM industry here in Australia and we anticipate it developing and evolving as
6 min readHow Operation Managers Can Convince Executives To Solve Problems They Can’t See Facility ManagementArticle
How Operation Managers Can Convince Executives To Solve Problems They Can’t See
Aug 29, 2019
2 min readWhy Leaders Need To Take A Risk-based Approach To Data Security NZBusiness and ManagementArticle
Why Leaders Need To Take A Risk-based Approach To Data Security
Jul 21, 2021
5 min readApproaching Risk from The Boardroom The European Business ReviewArticle
Approaching Risk from The Boardroom
Dec 2, 2022
Looking into risk from the perspective of the boardroom demands a note on the concept of corporate governance itself and the resulting implications. Shareholders are the principals and need to have their rights protected; management is nominated and
7 min readEverything You Should Know About Cybersecurity Automation TechfastlyArticle
Everything You Should Know About Cybersecurity Automation
Jun 1, 2021
6 min readUnderstanding The Weight On Security Leaders' Shoulders, And How To Shift It NZBusiness and ManagementArticle
Understanding The Weight On Security Leaders' Shoulders, And How To Shift It
Jul 20, 2022
4 min readThe CYBERSECURITY CHALLENGE in a High Digital Density World The European Business ReviewArticle
The CYBERSECURITY CHALLENGE in a High Digital Density World
Feb 4, 2019
17 min readTaking Guard Business TodayArticle
Taking Guard
Sep 2, 2021
6 min readThe Path Forward To A Unified Risk Framework The European Business ReviewArticle
The Path Forward To A Unified Risk Framework
Feb 11, 2022
4 min readFirst International Guideline On AI Safety Published By UK Standards Body The IndependentArticle
First International Guideline On AI Safety Published By UK Standards Body
Jan 16, 2024
2 min readDigital Strategies For Proactive Supplier Risk Management The European Business ReviewArticle
Digital Strategies For Proactive Supplier Risk Management
Oct 2, 2023
4 min read“The Prime Threats To Businesses Continue To Be The Same Threats We Have Seen For The Past Decade” PC Pro MagazineArticle
“The Prime Threats To Businesses Continue To Be The Same Threats We Have Seen For The Past Decade”
Jan 6, 2022
5 min readZero Trust PC Pro MagazineArticle
Zero Trust
Sep 11, 2022
2 min readA Framework For Risk Governance The European Business ReviewArticle
A Framework For Risk Governance
Oct 2, 2023
11 min readThe Weakest Link Facility ManagementArticle
The Weakest Link
Jun 24, 2018
7 min readDIGITAL CROWN JEWELS: How to Protect Your Data Assets Rotman ManagementArticle
DIGITAL CROWN JEWELS: How to Protect Your Data Assets
Sep 1, 2023
10 min readNAVIGATING INDUSTRY 4.0: RISKS AND OPPORTUNITIES IN THE AGE OF Al Business TodayArticle
NAVIGATING INDUSTRY 4.0: RISKS AND OPPORTUNITIES IN THE AGE OF Al
Sep 15, 2023
2 min readChoosing The Best Fit Finweek - EnglishArticle
Choosing The Best Fit
Aug 7, 2020
all investments have an impact – either positive or negative. A positive impact can be generated deliberately or unintentionally. Selecting the right metrics is an important tenet of the impact measurement and management process. But simply measuring
2 min readAI And Digital Resources In Fintech: Creating An Evolutionary Analytic Platform For “Risk” Estimation The European Business ReviewArticle
AI And Digital Resources In Fintech: Creating An Evolutionary Analytic Platform For “Risk” Estimation
Sep 20, 2018
5 min readThe Risks AdNewsArticle
The Risks
Aug 5, 2019
The ASX Corporate Governance Council says those who believe they don’t have any material exposure to environmental or social risks should consider carefully their basis for that belief and to benchmark against their peers. “One particular source of e
2 min readThink Safe Earthmovers & ExcavatorsArticle
Think Safe
Oct 17, 2021
3 min readKnow Before Your Inspection Cannabis & Tech TodayArticle
Know Before Your Inspection
Jun 22, 2020
2 min readESG Disclosure Standards Go Global With ISSB Launch KiplingerArticle
ESG Disclosure Standards Go Global With ISSB Launch
Nov 5, 2021
Anyone who has dipped a toe in environmental, social, and governance (ESG) investing knows that there is an alphabet soup of reporting standards aiming to measure corporate adherence to sustainability. Because government regulators have been reluctan
2 min read
Reviews for Risk Assessment for Asset Owners
Rating: 4.333333333333333 out of 5 stars
4.5/5
3 ratings0 reviews
Book preview
Risk Assessment for Asset Owners - Alan Calder
Guide
ITG POCKET GUIDES
Future titles will cover the following subjects:
Practical Information Security series
A Dictionary of Information Security Terms, Abbreviations and Acronyms
ISO27001 Assessment without tears
ISO27001: a Pocket Guide
Risk Assessments for Asset Owners
Practical IT Governance series
Enterprise Architecture
Information governance
Information security governance
IT Audit
IT Governance
IT Governance Frameworks
Project governance
Regulatory compliance - N America
Regulatory compliance - UK
The Integrated Management System
Practical Governance series
BASEL 2
Business Continuity
Corporate Governance in the UK (Turnbull)
Corporate Governance in the US (Sarbanes-Oxley)
Enterprise Risk Management (ERM)
Operational Risk
Risk Assessment for Asset Owners
A Pocket Guide
ALAN CALDER
STEVE G WATKINS
IT Governance Publishing
PUBLISHER’S NOTE
Every possible effort has been made to ensure that the
information contained in this book is accurate at the time of
going to press, and the publishers and the author cannot
accept responsibility for any errors or omissions, however
caused. No responsibility for loss or damage occasioned to
any person acting, or refraining from action, as a result of
the material in this publication can be accepted by the
publisher or the author.
First published in the United Kingdom in 2007 by
IT Governance Publishing.
Apart from any fair dealing for the purposes of research or
private study, or criticism or review, as permitted under the
Copyright, Designs and Patents Act 1988, this publication
may only be reproduced, stored or transmitted, in any form,
or by any means, with the prior permission in writing of the
publisher, or in the case of reprographic reproduction in
accordance with the terms of licences issued by the
Copyright Licensing Agency. Enquiries concerning
reproduction outside those terms should be sent to the
publishers at the following address:
IT Governance Publishing
IT Governance Limited
Unit 3
Clive Court
Bartholomew’s Walk
Cambridgeshire Business Park
Ely
Cambs
CB7 4EH
United Kingdom
www.itgovernance.co.uk
© Alan Calder and Steve G Watkins 2007
ISBN 978-1-849281-23-2
CONTENTS
Enjoying the preview?
Page 1 of 1