Overview

At TorchLight, we recommend Risk Assessments to help organizations understand the risk as it stands in a client’s current environment. The assessments are customized for the needs and controls within a organization, this could include assessing your digital and physical environment depending on the regulatory requirements and standards. This will also help clients understand potential options and strategies for managing these risks to a level that works for their business continuity.

Risk Assessment Steps

Step 1

Identifying and analyzing potential (future) events that may negatively impact individuals, assets, and/or the environment (i.e., risk analysis)

Step 2

Making judgments “on the tolerability of the risk on the basis of risk analysis” while considering influencing factors (i.e., risk evaluation)

Step 3

Completion of Test of Key Controls, assessing the administrative, technical and physical safeguards in place to protect the organization’s sensitive internal and client information

Step 4

Identify any potential internal and external threats as it relates to your organization’s information technology infrastructure as within the guidelines of the NIST Cybersecurity Framework

Step 5

Assignment of risk ratings for each item tested, share recommendations for mitigating potential information security threats to assist with the reduction of associated risk

Step 1

Identifying and analyzing potential (future) events that may negatively impact individuals, assets, and/or the environment (i.e., risk analysis)

Step 2

Making judgments “on the tolerability of the risk on the basis of risk analysis” while considering influencing factors (i.e., risk evaluation)

Negative
Step 3

Completion of Test of Key Controls, assessing the administrative, technical and physical safeguards in place to protect the organization’s sensitive internal and client information

Step 4

Identify any potential internal and external threats as it relates to your organization’s information technology infrastructure as within the guidelines of the NIST Cybersecurity Framework

Step 5

Assignment of risk ratings for each item tested, share recommendations for mitigating potential information security threats to assist with the reduction of associated risk

Assess Your Risk!

Understand your potential options and strategies for managing risk to a level that works for their business continuity.