Example risk assessment and treatment tool

Page 1

Assessment Details Completion Guidance Security Classification:

Confidential

Insert Classification

Risk Assessment Title:

Initial risk assessment of key information assets.

Short, descriptive title

Risk Assessment Scope:

Customer information assets, particularly those containing personal data. Increasing legislation surrounding the protection of personal data, such as the GDPR.

Risk Acceptance Criteria:

Risks at a level rated LOW may be accepted.

Version:

1

Describe the scope of the risk assessment e.g. location, process, assets Describe the general environment in which the assessment is carried out and internal and external factors affecting it Set out the factors which will make a risk acceptable and therefore not require treatment Start at Version 1

Dated:

28 Nov 20xx

Date the assessment was carried out

Risk Assessor(s):

A. N. Other

Risk Assessment Participants:

Marketing Manager, Chief Information Officer

Approval:

Chief Operating Officer

Name and title of person(s) carrying out the risk assessment Names and titles of people contributing to the risk assessment Name and title of approver

Date Approved:

3 Dec 20xx

Date the assessment was approved

Context of Risk Assessment:


Turn static files into dynamic content formats.

Create a flipbook
Issuu converts static files into: digital portfolios, online yearbooks, online catalogs, digital photo albums and more. Sign up and create your flipbook.