IT systems / information assets

When clicking on this bar, you will be able to see the gaps within the category:

Missing risk assessment

__________________________________________________________________________________________________________________________________________

All IT systems / Information assets must be risk assessed in relation to at least one risk. The following IT systems / Information assets lack a risk assessment.

Creating a risk assessment can be done in two ways:

–directly from the dashboard (1) 

–or from the overview of the IT systems / Information assets (2) as shown in the following images below:

______________________________________________________________________________________________________________________________

Unacceptable risk assessment

All risk assessments must be acceptable to the organization. If they are not, a measure must be taken to minimize the risk. In the following images, we will show how to remove this gap:

When you click here (1) in the image above, the following form wil open:

When clicking on (2) in the image above, you will be directed to yet another form, where you can either increase or decrease the rating of the risk:

You must either accept the risk (3) or take a measure to decrease the risk, which will be reflected in the reassessment of the risk assessment as shown (4) in the images above.