Template Information
Use this risk assessment template specifically designed for it and network security. enter as many vulnerabilities observed as needed and fill out the fields, include optional photos or flow diagrams, and provide the risk rating for each threat.
Category: general
Template Questions
- Describe the purpose of this Network Security Risk Assessment
- Describe the scope of the risk assessment (including system components, elements, users, field site locations (if any), and any other details about the system to be considered in the assessment)
- List all participants including role (e.g. system owner, system custodian, security admin, database admin, network manager, risk assessment team, etc.)
- Describe key technology components (applications, databases, operating systems, networks, interconnections, protocols)
- Describe how users access the system and their intended use of the system
- Click Add Vulnerability (+) after you have identified a vulnerability or threat source
- Observation
- Threat source/ vulnerability
- Evidence (flow diagrams, screenshots etc.) (optional)
- Existing controls
- Risk rating
- Recommended controls or alternative options for reducing risk
- Recommendations
- Name and Signature