56
ISO Security Solutions
Assessing
security risks - Risk Level
Risk level = Probability x Consequence
Selection of Controls: selected based on risk rating,
available of risk mitigation assets, and
management's willingness to accept residual risk
Select risk
assessment data – Risk Level