Downloaded 465 times
Asset, Vulnerability, Threat, Risk & Control
This document defines key information security concepts: assets are anything of value to an organization, vulnerabilities are weaknesses of assets, threats are potential dangers, risk is the exposure of a vulnerability to a threat, and controls are countermeasures to reduce risk. It provides an example where human resources are the most valuable asset, an imbalance is a vulnerability, crocodiles are threats, and the possibility of falling is the risk, with controls implemented to reduce risk.
In this document
Powered by AI
The slides discuss key security concepts: Assets, Vulnerabilities, Threats, Risks, and Controls with examples. It emphasizes how human resources are a vital asset and highlights the importance of identifying vulnerabilities and threats to manage risks effectively.
More Related Content
More from Muhammad Faisal Naqvi, CISSP, CISA, AMBCI, ITIL, ISMS LA n Master
Asset, Vulnerability, Threat, Risk & Control
- 1. Asset, Vulnerability, Threat,Risk & Control Muhammad Faisal Naqvi CISSP, CISA, ISO27K A & I, AMBCI MSc Elect Comm (Gold)
- 2. Asset = anythinghas value to the organization Vulnerability = any Weakness of Asset Threat = any possible Danger Risk = Vulnerability exposed to Threat Risk = Vulnerability X Threat Control = Countermeasure to reduce Risk Asset, Vulnerability, Threat, Risk & Control
- 3. Human Resource isthe most valuable Asset Imbalance is a weakness i.e. Vulnerability Crocodiles are the Threats Possibility of falling down is the RISK
- 4.