- Virtual Consultant
- Learning center
Why are risk assessment and risk treatment important?
Implementation of information security safeguards (also called security controls) usually includes lot of changes in an organization – changes in technology, processes, responsibilities, etc. The problem is that most of the companies make these changes in a non-systematic way – they do it because they wanted to fix some immediate problem, or because some new technology has arrived.
But this kind of approach brings two key problems: (1) it is very likely that many potential problems (i.e. risks) will not be addressed because the employees are simply not aware of them, and (2) the scope of changes will probably not be appropriate to the level of risk – very often the controls are either too big, or too small; the effect is that they either cost too much or that they don’t offer enough protection.
The solution to these issues is to perform an analysis before doing any implementation of controls – and this is what risk assessment is about. The purpose of risk assessment is to identify where the potential problems are, and then systematically mitigate those risks through the risk treatment process.
Live online trainings via webinars are currently delivered in English only. However, we plan to deliver some of the trainigs on Spanish and Croatian too.
No, all our live online trainings are delivered through Internet only, via webinars. Webinars enable you to experience both audio and video presentation from our presenter/trainer.
You just need your computer with a browser - webinar recordings can be watched as any other video on the internet, e.g. on YouTube.
The number of views is not limited - you can watch the recordings as many times you wish.