Latest Research

Thumbnail for Create an Exponential Impact on Hospitality With Service Robots

Thumbnail for COPS Business Reference Architecture

Thumbnail for AI and AI-Related Use Case Library for Community-Oriented Policing Services

Thumbnail for Responsible Use of AI in Policing

Thumbnail for Overcome the Barriers to Enable Exclusive Premium Experiences

Thumbnail for Maintain Continuity in a Power Outage

Thumbnail for Generative AI Use Cases for Marketing, Sales, and Customer Service

Thumbnail for Integrate Biomedical Device Management With IT

Thumbnail for Fast-Track Your DERMS Business Case

Thumbnail for Prepare to Negotiate Your Generative AI Vendor Contract

See all new content

Define the Information Security Risk Tolerance Level

Your best guess at what’s needed doesn’t cut it anymore.

Book This Workshop

Making risk decisions without a clearly defined risk tolerance can result in:

Inadvertent acceptance of dangerous risks

Spending security funds on ineffective controls

Ambiguous security risk responsibilities

Clear understanding of risk tolerance leads to:

Informed risk decisions

Efficient and effective rationale for security spend

Clearly assigned risk functions

Book Your Workshop

Onsite Workshops offer an easy way to accelerate your project. If you are unable to do the project yourself, and a Guided Implementation isn’t enough, we offer low-cost onsite delivery of our Project Workshops. We take you through every phase of your project and ensure that you have a road map in place to complete your project successfully.

Book Now

The Purpose

Discuss the general business requirements and obligations towards risk.
Understand and agree on risk responsibilities and duties.
Define and discuss security assumptions for frequency/impact.

Key Benefits Achieved

Clear understanding of risk language and responsibilities across the organization
Defined risk statement and IT mandate

Activities:		Outputs:
1.1	Define the security executive function RACI chart.	Defined IT mandate
1.2	Assess employee and management risk culture.	IT and Business Leadership Alignment Report
1.3	Standardize impact and risk assumption terminology.	Information Security Risk Statement
1.4	Define risk requirements and risk frequency/impact thresholds.	Business Leadership Communication and Reporting Plan

The Purpose

Use risk definitions and understanding to define micro risk tolerance.
Define and discuss organizational risk tolerance for collective macro risk, and high-level strategy for macro risk management.

Key Benefits Achieved

Quantified definition for micro risk tolerance
Quantified methodology for risk impact analysis
Understanding and management method for macro risk

Activities:		Outputs:
2.1	Perform risk scenario assessment.	Risk Tolerance Determination Tool
2.2	Define and discuss organizational micro risk tolerance.
2.3	Define and discuss macro risk tolerance and macro risk management methodology.

Latest Research

Define the Information Security Risk Tolerance Level

Making risk decisions without a clearly defined risk tolerance can result in:

Clear understanding of risk tolerance leads to:

Book Your Workshop

Module 1: Assess the Risk Culture and Responsibilities

The Purpose

Key Benefits Achieved

Module 2: Define Risk Tolerance

The Purpose

Key Benefits Achieved

Book this workshop now to accelerate your IT projects

Latest Research

Define the Information Security Risk Tolerance Level

Making risk decisions without a clearly defined risk tolerance can result in:

Clear understanding of risk tolerance leads to:

Book Your Workshop

Module 1: Assess the Risk Culture and Responsibilities

The Purpose

Key Benefits Achieved

Module 2: Define Risk Tolerance

The Purpose

Key Benefits Achieved

Book this workshop now to accelerate your IT projects

Title