Conducting an asset-based risk assessment in ISO 27001:2013
Conducting an asset-based risk assessment in ISO 27001:2013 – Vigilant Software The nature of ISO27001 is that it is heavily focused on risk-based planning. This is to ensure that the identified information risks are appropriately managed according to the threats and the nature of the threats. While asset-based risk assessments are still widely regarded as best practice, […]