10 likes | 160 Views
Criticality levels (here=3, but could be any number). IRMP vs. Information Risk Analysis. Example:. IRMP (Information Risk Management Process-7steps). Information security analysis. Business Impact Ref. table. Business Processes. Policies, Directives and checklists. IT-Architecture and
E N D
Criticality levels (here=3, but could be any number) IRMP vs. Information Risk Analysis Example: IRMP (Information Risk Management Process-7steps) Information security analysis BusinessImpact Ref. table BusinessProcesses Policies, Directives and checklists IT-Architecture and Strategy IT/IS-Standards Budget/financing ITIL-processes & other procedures Incidents(Peregrine) 5 6 1 2 3 4 Risk assessment of Information Resource Create security proposal Developand Deploysolutions Business support analysis Criticality assessment BU/BPO decision Site/IR/system New business/unit New resources 7 Monitor and Audit BU Head of business unit BPO Business Process Owner