Risk analysis
Information security, cybersecurity, and protection of privacy data - ISO/IEC 27001 : 2022
Article REF: H5070 V3
Risk analysis
Information security, cybersecurity, and protection of privacy data - ISO/IEC 27001 : 2022

Author : Claude PINET

Publication date: July 10, 2024 | Lire en français

Logo Techniques de l'Ingenieur You do not have access to this resource.
Request your free trial access! Free trial

Already subscribed?

8. Risk analysis

Risk analysis is the second stage in risk assessment.

Risk analysis: process used to understand the nature and determine the level of risk (ISO/IEC 27000, § 3.6.3).

8.1 Typology of impacts on assets – Notion of DIC

ISO/IEC 27000 has identified three main factors in the definition of information security.

Information security: protecting the confidentiality, integrity and availability of information (ISO/IEC 27000, § 3.28).

These factors are used to determine the strength of the impacts (consequences) suffered by each asset. Figure 4...

You do not have access to this resource.
Logo Techniques de l'Ingenieur

Exclusive to subscribers. 97% yet to be discovered!

You do not have access to this resource. Click here to request your free trial access!

Already subscribed?

Article included in this offer

"Software technologies and System architectures"

( 227 articles )

Complete knowledge base

Updated and enriched with articles validated by our scientific committees

Services

A set of exclusive tools to complement the resources

View offer details
Contact our team FAQ