wisemonkeys logo
FeedNotificationProfileManage Forms
FeedNotificationSearchSign in
wisemonkeys logo

Blogs

IT RISK

profile
Anjali Tiwari
Aug 30, 2022
0 Likes
0 Discussions
184 Reads

Your IT systems and the information that you hold on them face a wide range of risks. If your business relies on technology for key operations and activities, you need to be aware of the range and nature of those threats.

Types of risks in IT systems

Threats to your IT systems can be external, internal, deliberate and unintentional. Most IT risks affect one or more of the following:

business or project goals

service continuity

bottom-line results

business reputation

security

infrastructure

 

Looking at the nature of risks, it is possible to differentiate between:

Physical threats - resulting from physical access or damage to IT resources such as the servers. These could include theft, damage from fire or flood, or unauthorised access to confidential data by an employee or outsider.

Electronic threats - aiming to compromise your business information - eg a hacker could get access to your website, your IT system could become infected by a computer virus, or you could fall victim to a fraudulent email or website. These are often of a criminal nature.

Technical failures - such as software bugs, a computer crash or the complete failure of a computer component. A technical failure can be catastrophic if, for example, you cannot retrieve data on a failed hard drive and no backup copy is available.

Infrastructure failures - such as the loss of your internet connection can interrupt your business - eg you could miss an important purchase order.

Human error - is a major threat - eg someone might accidentally delete important data, or fail to follow security procedures properly.

Measuring IT risk (or cyber risk) can occur at many levels. At a business level, the risks are managed categorically. Front line IT departments and NOC's tend to measure more discrete, individual risks. Managing the nexus between them is a key role for modern CISO's.

When measuring risk of any kind, selecting the correct equation for a given threat, asset, and available data is an important step. Doing so is subject unto itself, but there are common components of risk equations that are helpful to understand.

 

There are four fundamental forces involved in risk management, which also apply to cybersecurity. They are assets, impact, threats, and likelihood. You have internal knowledge of and a fair amount of control over assets, which are tangible and intangible things that have value. You also have some control over impact, which refers to loss of, or damage to, an asset. However, threats that represent adversaries and their methods of attack are external to your control. Likelihood is the wild card in the bunch. Likelihoods determine if and when a threat will materialize, succeed, and do damage. While never fully under your control, likelihoods can be shaped and influenced to manage the risk.


Comments ()


Sign in

Read Next

Vulnerabilities in OnePlus Devices

Blog banner

Service Design Principles

Blog banner

Marvel Cinematic Universe

Blog banner

Modern Operating system

Blog banner

ART AND CULTURE OF VRINDAVAN

Blog banner

Data Security must be your Priority!

Blog banner

Buffer overflow

Blog banner

Evolution of Operating System

Blog banner

Student Grade Calculator in LISP

Blog banner

Who decides your overthinking, anyway?

Blog banner

Inventory management software system

Blog banner

Google

Blog banner

City of Mumbai (Bombay):

Blog banner

Memory management

Blog banner

Virtual memory

Blog banner

Electronic Funds Transfer

Blog banner

Yahoo! mail

Blog banner

Blockchain

Blog banner

Studying Denial of service attack using DOSHTTP tool

Blog banner

Stories Woven in Silk: The Meaning Behind Patola Motifs

Blog banner

What is service level Agreement?

Blog banner

How Do I Get Rid of My People-Pleasing Behaviour?

Blog banner

virtual machine

Blog banner

Classification Vs Clustring? What's the diffrence?

Blog banner

10 Interesting facts you should know!!!

Blog banner

Denial-of-Service and Distributed Denial-of-Service Attack Techniques

Blog banner

Principles of Concurrency

Blog banner

ahh wait a min

Blog banner

Evolution of operating systems

Blog banner

Emailing the merger document

Blog banner

Video games

Blog banner

Tools to support CSI activities

Blog banner

Memory Management - operating system

Blog banner

FRIENDSHIP

Blog banner

GIS Topography

Blog banner

"The Benefits of Using GIS in Agriculture"

Blog banner

Personalized Movie Recommendations with Data Science

Blog banner

OS assignment 3

Blog banner

Computer Forensics and its Impact in Business Environment

Blog banner

What is Segmentation?

Blog banner

Importance of modern technology era

Blog banner

Clarizen

Blog banner