Rating: 4 out of 5 stars
4/5
Ebook51 pages28 minutes
Risk Assessment for Asset Owners
By Alan Calder and Steve Watkins
Rating: 4.5 out of 5 stars
4.5/5
()
About this ebook
Risk assessment is at the heart of risk management, and the two together form the core competences of information security management. This title is a guide to the ISO27001 risk assessment, designed to assist asset owners and others who are working within an ISO27001/ISO17799 framework to deliver a qualitative risk assessment. It conforms with the guidance provided in BS7799-3:2006 and NIST SP 800-30.
Author
Alan Calder
Alan Calder is a leading author on IT governance and information security issues. He is the CEO of GRC International Group plc, the AIM-listed company that owns IT Governance Ltd. Alan is an acknowledged international cyber security guru. He has been involved in the development of a wide range of information security management training courses that have been accredited by the International Board for IT Governance Qualifications (IBITGQ). He is a frequent media commentator on information security and IT governance issues, and has contributed articles and expert comment to a wide range of trade, national and online news outlets.
Read more from Alan Calder
Information Security Risk Management for ISO 27001/ISO 27002, third edition ISO 27001/ISO 27002: A guide to information security management systems Rating: 0 out of 5 stars0 ratingsInformation Security Risk Management for ISO27001/ISO27002 Rating: 4 out of 5 stars4/5IT Governance: Implementing Frameworks and Standards for the Corporate Governance of IT Rating: 4 out of 5 stars4/5IT Governance – An international guide to data security and ISO 27001/ISO 27002, Eighth edition Rating: 5 out of 5 stars5/5ISO/IEC 38500: The IT Governance Standard Rating: 5 out of 5 stars5/5IT Governance: A Pocket Guide Rating: 3 out of 5 stars3/5Selling Information Security to the Board: A Primer Rating: 0 out of 5 stars0 ratingsPCI DSS: A pocket guide, sixth edition Rating: 0 out of 5 stars0 ratingsCyber Essentials: A guide to the Cyber Essentials and Cyber Essentials Plus certifications Rating: 0 out of 5 stars0 ratingsPCI DSS: A Pocket Guide, fourth edition Rating: 0 out of 5 stars0 ratingsPCI DSS: A Pocket Guide - 3rd edition Rating: 0 out of 5 stars0 ratingsCyber Essentials: A Pocket Guide Rating: 5 out of 5 stars5/5EU GDPR - A pocket guide, second edition Rating: 0 out of 5 stars0 ratingsNine Steps to Success: North American edition: An ISO 27001 Implementation Overview Rating: 0 out of 5 stars0 ratingsNine Steps to Success: An ISO 27001:2022 Implementation Overview Rating: 0 out of 5 stars0 ratingsNetwork and Information Systems (NIS) Regulations - A pocket guide for operators of essential services Rating: 0 out of 5 stars0 ratingsThe Green Office: A Business Guide Rating: 0 out of 5 stars0 ratingsPCI DSS: A Pocket Guide Rating: 2 out of 5 stars2/5The Green Agenda: A Business Guide Rating: 0 out of 5 stars0 ratingsThe Case for ISO27001:2013 Rating: 1 out of 5 stars1/5IT Governance Critical Issues Series: Cyber Security Rating: 0 out of 5 stars0 ratingsHow to Use Web 2.0 and Social Networking Sites Securely: A Pocket Guide Rating: 0 out of 5 stars0 ratingsImplementing Information Security based on ISO 27001/ISO 27002 Rating: 0 out of 5 stars0 ratingsIT Regulatory Compliance in the UK Rating: 0 out of 5 stars0 ratingsCompliance for Green IT: A Pocket Guide Rating: 5 out of 5 stars5/5IT Governance: Guidelines for Directors Rating: 0 out of 5 stars0 ratingsThreat 2.0: Security and Compliance for Web 2.0 Sites Rating: 0 out of 5 stars0 ratings
Related to Risk Assessment for Asset Owners
Related ebooks
ISO27001:2013 Assessments Without Tears Rating: 3 out of 5 stars3/5Application security in the ISO27001:2013 Environment Rating: 4 out of 5 stars4/5Risk Management and ISO 31000: A pocket guide Rating: 0 out of 5 stars0 ratingsISO22301: A Pocket Guide Rating: 4 out of 5 stars4/5ISO 27001 Controls – A guide to implementing and auditing Rating: 5 out of 5 stars5/5Nine Steps to Success: An ISO27001:2013 Implementation Overview Rating: 3 out of 5 stars3/5ISO 22301: 2019 - An introduction to a business continuity management system (BCMS) Rating: 4 out of 5 stars4/5ISO27001/ISO27002:2013: A Pocket Guide Rating: 4 out of 5 stars4/5Information Security Breaches: Avoidance and Treatment based on ISO27001 Rating: 0 out of 5 stars0 ratingsPCI DSS: A Pocket Guide, fourth edition Rating: 0 out of 5 stars0 ratingsISO/IEC 27701:2019: An introduction to privacy information management Rating: 4 out of 5 stars4/5The Case for ISO27001:2013 Rating: 1 out of 5 stars1/5Information Security Governance: A Practical Development and Implementation Approach Rating: 0 out of 5 stars0 ratingsSelling Information Security to the Board: A Primer Rating: 0 out of 5 stars0 ratingsRisk Management and Information Systems Control Rating: 5 out of 5 stars5/5An Introduction to Information Security and ISO27001:2013: A Pocket Guide Rating: 4 out of 5 stars4/5Business Practical Security Rating: 0 out of 5 stars0 ratingsIT Audit, Control, and Security Rating: 0 out of 5 stars0 ratingsPCI DSS: A pocket guide, sixth edition Rating: 0 out of 5 stars0 ratingsISO/IEC 27001:2022: An introduction to information security and the ISMS standard Rating: 5 out of 5 stars5/5Implementing an Integrated Management System (IMS): The strategic approach Rating: 5 out of 5 stars5/5IS Auditor - Process of Auditing: Information Systems Auditor, #1 Rating: 0 out of 5 stars0 ratingsCybersecurity and Third-Party Risk: Third Party Threat Hunting Rating: 0 out of 5 stars0 ratingsNIST Cybersecurity Framework: A pocket guide Rating: 0 out of 5 stars0 ratingsWe Need To Talk: 52 Weeks To Better Cyber-Security Rating: 0 out of 5 stars0 ratingsCertified Information Systems Auditor Exam Prep And Dumps Exam Review Guide for ISACA CISA Exam PART 1 Rating: 0 out of 5 stars0 ratingsApplication Security in the ISO27001 Environment Rating: 0 out of 5 stars0 ratingsAsset Security: CISSP, #2 Rating: 0 out of 5 stars0 ratings
Business For You
Your Next Five Moves: Master the Art of Business Strategy Rating: 5 out of 5 stars5/5Business English Vocabulary Builder: Idioms, Phrases, and Expressions in American English Rating: 5 out of 5 stars5/5Collaborating with the Enemy: How to Work with People You Don't Agree with or Like or Trust Rating: 4 out of 5 stars4/5The Unfair Advantage: BUSINESS BOOK OF THE YEAR AWARD-WINNER: How You Already Have What It Takes to Succeed Rating: 5 out of 5 stars5/5An MBA in a Book: Everything You Need to Know to Master Business - In One Book! Rating: 0 out of 5 stars0 ratingsThe Intelligent Investor, Rev. Ed: The Definitive Book on Value Investing Rating: 4 out of 5 stars4/5The Hard Thing About Hard Things: Building a Business When There Are No Easy Answers Rating: 4 out of 5 stars4/5The Visual Mba: Two Years of Business School Packed into One Priceless Book of Pure Awesomeness Rating: 4 out of 5 stars4/5Discipline Is Destiny: A NEW YORK TIMES BESTSELLER Rating: 5 out of 5 stars5/5Never Split the Difference: Negotiating As If Your Life Depended On It Rating: 4 out of 5 stars4/5Finance Basics (HBR 20-Minute Manager Series) Rating: 5 out of 5 stars5/5Conceptual Frameworks: A Guide to Structuring Analyses, Decisions and Presentations Rating: 5 out of 5 stars5/5MBA Notes: Course Notes from a Top MBA Program Rating: 5 out of 5 stars5/5Ultralearning: Master Hard Skills, Outsmart the Competition, and Accelerate Your Career Rating: 4 out of 5 stars4/5On Writing Well, 30th Anniversary Edition: An Informal Guide to Writing Nonfiction Rating: 4 out of 5 stars4/5Courage Is Calling: Fortune Favours the Brave Rating: 4 out of 5 stars4/5The Concise Laws of Human Nature Rating: 4 out of 5 stars4/5The Anthology of Balaji: A Guide to Technology, Truth, and Building the Future Rating: 5 out of 5 stars5/5High Conflict: Why We Get Trapped and How We Get Out Rating: 4 out of 5 stars4/5Is Capitalism Broken? Rating: 0 out of 5 stars0 ratingsWork: A History of How We Spend Our Time Rating: 4 out of 5 stars4/5CFA 2025: Level 1 corporate Issuers: CFA level 1, #1 Rating: 4 out of 5 stars4/5Netherlands - Culture Smart!: The Essential Guide to Customs & Culture Rating: 4 out of 5 stars4/5Outstanding business English: Tips for email, social media and all your business comminications Rating: 5 out of 5 stars5/5CFA Level 1 Calculation Workbook: 300 Calculations to Prepare for the CFA Level 1 Exam (2024 Edition) Rating: 5 out of 5 stars5/5Business Model Generation: A Handbook for Visionaries, Game Changers, and Challengers Rating: 5 out of 5 stars5/5Summary of Bill Burnett & Dave Evans' Designing Your New Work Life Rating: 4 out of 5 stars4/5Automate Your Busywork: Do Less, Achieve More, and Save Your Brain for the Big Stuff Rating: 3 out of 5 stars3/5Super Learning: Advanced Strategies for Quicker Comprehension, Greater Retention, and Systematic Expertise Rating: 4 out of 5 stars4/5
Related podcast episodes
#60 What is ISO 27017: Controls for Cloud Services 0% found this document usefulCyberWire Pro Interview Selects: Jaclyn Miller from NTT, Ltd. 0% found this document usefulThe ICISF Quick Tips - Introduction to CISM 0% found this document usefulIs enhanced hardware security the answer to ransomware? [CyberWire-X] 100% found this document usefulHow To Succeed With Privacy By Design 0% found this document useful083: SMS Pt 4 - What Does ISO 45001 Require?: Safety Management System overview 0% found this document useful080: SMS Pt 1 - Safety Management System Defined: What is a Safety Management System (SMS)? 0% found this document useful#63 Epiq's Information Security Journey: With guest Dinesh Sharma 0% found this document usefulJohn Cusimano: Leveraging ISA/IEC 62443 to Quantify OT Risk 0% found this document useful
Related articles
Why Leaders Need To Take A Risk-based Approach To Data Security NZBusiness and ManagementArticle
Why Leaders Need To Take A Risk-based Approach To Data Security
Jul 21, 2021
5 min readHow To Earn Cyber Essentials Certification PC Pro MagazineArticle
How To Earn Cyber Essentials Certification
May 9, 2024
8 min read“DORA Is A Force For Good And Will Help Businesses To Make Better Decisions, Faster” PC Pro MagazineArticle
“DORA Is A Force For Good And Will Help Businesses To Make Better Decisions, Faster”
Apr 10, 2022
6 min readCompliance Is Riskier Than Ever The European Business ReviewArticle
Compliance Is Riskier Than Ever
Jan 31, 2020
4 min readEverything You May Have Wanted to Know About Ethical/Whitehat Hackers TechfastlyArticle
Everything You May Have Wanted to Know About Ethical/Whitehat Hackers
Oct 21, 2020
5 min readVulnerability Assessments PC Pro MagazineArticle
Vulnerability Assessments
Jan 7, 2021
3 min readCybersecurity Firm Fireeye Says Was Hacked By Nation State TechLife NewsArticle
Cybersecurity Firm Fireeye Says Was Hacked By Nation State
Dec 12, 2020
3 min readCybersecurity: It Might Be The Small Stuff That Gets You NZBusiness and ManagementArticle
Cybersecurity: It Might Be The Small Stuff That Gets You
Jan 16, 2020
2 min readA Practical Guide To Kick-starting Your Cyber Supply Chain Risk Programme The European Business ReviewArticle
A Practical Guide To Kick-starting Your Cyber Supply Chain Risk Programme
Mar 27, 2024
5 min readMaking A Corrosion Strategy Facility ManagementArticle
Making A Corrosion Strategy
Feb 25, 2018
The degradation of private and public assets and infrastructure continues to have a major economic impact on industry and the wider community. In Australia, the yearly cost of asset maintenance is estimated to be approximately $32 billion, with $8 bi
4 min readIndustry Assurance Schemes Australasian Transport News (ATN)Article
Industry Assurance Schemes
Dec 16, 2019
4 min readHow Do You Know You Are Okay? NZBusiness and ManagementArticle
How Do You Know You Are Okay?
May 27, 2019
2 min readGlobal Cybersecurity Guide For Directors NZBusiness and ManagementArticle
Global Cybersecurity Guide For Directors
Apr 25, 2021
Cybersecurity failure is a “clear and present danger” and critical global threat, yet responses from board directors have been fragmented, risks not fully understood and collaboration between industries limited, according to the World Economic Forum.
2 min readDOUBLE MATERIALITY: Realising the Value of a Comprehensive Information Management System The European Business ReviewArticle
DOUBLE MATERIALITY: Realising the Value of a Comprehensive Information Management System
May 31, 2023
4 min readAsk The Expert Facility ManagementArticle
Ask The Expert
Mar 28, 2019
In our most recent edition of FM magazine, we outlined our plans to introduce a new column, ‘Ask the Expert’. We are excited at the prospect that this column will help our FM industry here in Australia and we anticipate it developing and evolving as
6 min readHow Operation Managers Can Convince Executives To Solve Problems They Can’t See Facility ManagementArticle
How Operation Managers Can Convince Executives To Solve Problems They Can’t See
Aug 29, 2019
2 min readApproaching Risk from The Boardroom The European Business ReviewArticle
Approaching Risk from The Boardroom
Dec 2, 2022
Looking into risk from the perspective of the boardroom demands a note on the concept of corporate governance itself and the resulting implications. Shareholders are the principals and need to have their rights protected; management is nominated and
7 min readEverything You Should Know About Cybersecurity Automation TechfastlyArticle
Everything You Should Know About Cybersecurity Automation
Jun 1, 2021
6 min readUnderstanding The Weight On Security Leaders' Shoulders, And How To Shift It NZBusiness and ManagementArticle
Understanding The Weight On Security Leaders' Shoulders, And How To Shift It
Jul 20, 2022
4 min readThe CYBERSECURITY CHALLENGE in a High Digital Density World The European Business ReviewArticle
The CYBERSECURITY CHALLENGE in a High Digital Density World
Feb 4, 2019
17 min readTaking Guard Business TodayArticle
Taking Guard
Sep 2, 2021
6 min readThe Path Forward To A Unified Risk Framework The European Business ReviewArticle
The Path Forward To A Unified Risk Framework
Feb 11, 2022
4 min readFirst International Guideline On AI Safety Published By UK Standards Body The IndependentArticle
First International Guideline On AI Safety Published By UK Standards Body
Jan 16, 2024
2 min readDigital Strategies For Proactive Supplier Risk Management The European Business ReviewArticle
Digital Strategies For Proactive Supplier Risk Management
Oct 2, 2023
4 min readZero Trust PC Pro MagazineArticle
Zero Trust
Sep 11, 2022
2 min read“The Prime Threats To Businesses Continue To Be The Same Threats We Have Seen For The Past Decade” PC Pro MagazineArticle
“The Prime Threats To Businesses Continue To Be The Same Threats We Have Seen For The Past Decade”
Jan 6, 2022
5 min readA Framework For Risk Governance The European Business ReviewArticle
A Framework For Risk Governance
Oct 2, 2023
11 min readThe Weakest Link Facility ManagementArticle
The Weakest Link
Jun 24, 2018
7 min readDIGITAL CROWN JEWELS: How to Protect Your Data Assets Rotman ManagementArticle
DIGITAL CROWN JEWELS: How to Protect Your Data Assets
Sep 1, 2023
10 min readNAVIGATING INDUSTRY 4.0: RISKS AND OPPORTUNITIES IN THE AGE OF Al Business TodayArticle
NAVIGATING INDUSTRY 4.0: RISKS AND OPPORTUNITIES IN THE AGE OF Al
Sep 15, 2023
2 min read
Reviews for Risk Assessment for Asset Owners
Rating: 4.333333333333333 out of 5 stars
4.5/5
3 ratings0 reviews
Book preview
Risk Assessment for Asset Owners - Alan Calder
Guide
ITG POCKET GUIDES
Future titles will cover the following subjects:
Practical Information Security series
A Dictionary of Information Security Terms, Abbreviations and Acronyms
ISO27001 Assessment without tears
ISO27001: a Pocket Guide
Risk Assessments for Asset Owners
Practical IT Governance series
Enterprise Architecture
Information governance
Information security governance
IT Audit
IT Governance
IT Governance Frameworks
Project governance
Regulatory compliance - N America
Regulatory compliance - UK
The Integrated Management System
Practical Governance series
BASEL 2
Business Continuity
Corporate Governance in the UK (Turnbull)
Corporate Governance in the US (Sarbanes-Oxley)
Enterprise Risk Management (ERM)
Operational Risk
Risk Assessment for Asset Owners
A Pocket Guide
ALAN CALDER
STEVE G WATKINS
IT Governance Publishing
PUBLISHER’S NOTE
Every possible effort has been made to ensure that the
information contained in this book is accurate at the time of
going to press, and the publishers and the author cannot
accept responsibility for any errors or omissions, however
caused. No responsibility for loss or damage occasioned to
any person acting, or refraining from action, as a result of
the material in this publication can be accepted by the
publisher or the author.
First published in the United Kingdom in 2007 by
IT Governance Publishing.
Apart from any fair dealing for the purposes of research or
private study, or criticism or review, as permitted under the
Copyright, Designs and Patents Act 1988, this publication
may only be reproduced, stored or transmitted, in any form,
or by any means, with the prior permission in writing of the
publisher, or in the case of reprographic reproduction in
accordance with the terms of licences issued by the
Copyright Licensing Agency. Enquiries concerning
reproduction outside those terms should be sent to the
publishers at the following address:
IT Governance Publishing
IT Governance Limited
Unit 3
Clive Court
Bartholomew’s Walk
Cambridgeshire Business Park
Ely
Cambs
CB7 4EH
United Kingdom
www.itgovernance.co.uk
© Alan Calder and Steve G Watkins 2007
ISBN 978-1-849281-23-2
CONTENTS
Enjoying the preview?
Page 1 of 1