Risk Analysis Process Description

1Introduction 2Serv. Mgmt. 3Principles 4Processes 5Tech Activities 6Organization 7Tech Considerations 8Implementation 9Challenges Appendeces

4.1SC MGMT 4.2SLM 4.3CAPACITY MGMT 4.4AVAILABILITY MGMT 4.5 CONTINUITY MGMT 4.6SECURITY MGMT 4.7SUPPLIER MGMT

Triggers
  • New/changed business requirements/services/process
  • New or changed targetsD
  • Breech of Major Incident recovery target
  • Periodic activitiesD
  • PIR
  • Continuity and Recovery plans test results
  • Invocation of ITSCM following major incident
Controls
  • Policies defining risk limits and risk tolerances
  • Job descriptions outlining Risk Mgmt R&Rs
 
Inputs
  • BIA
  • risk information, fed by incident reporting and problem reviews
Processes

  • Profiling
  • Contextualizing
  • Communicating
  • Identifying
  • Analyzing
  • Evaluating
  • Implementing
  • Monitoring
Outputs
  • Risk Communications
  • Risk Register
  • Risk Mitigation Strategy
  • Risk Treatment Plan
  Mechanisms
  • Risk Analysis MethodologyD
  • Method for identifying risks
  • Risk Register
  • Risk Treatment Template
  • Incident Reporting System
  • Composite Risk IndexD
  • Brainstorming sessions
  • Root Cause Analyses
KPIs
  • risk management meetings and workshops
  • risk management improvement projects
  • improvements to the risk assessment process
  • Level of funding for risk management projects
  • updates to published risk limits and policies
  • risk monitoring reports
  • personnel trained in risk management methodology


Visit my web site