The Information Risk Self Assesment Part 1 of 4 (Untying the Gordian Knot, Demystifying Information Risk Assessment)

Information Risk assessments require hard to find and expensive expertise. Building on the 32 questionnaires of Volume 2 based on the controls of ISO 27001 and SP 800-53, this 4 part series provides explanations of the vulnerability revealed by a no answer to a question and gives each vulnerability a rating of High, Moderate or Low. This is intended to provide a quick overview of the existing vulnerabilities and the resulting risks. The process is useful when preparing for audits, regulator visits or more formal assessments. Soft copy of the 32 questionnaires remain available with proof of purchase of Volume 2. Part 1 addresses the first 5 questionnaires.