Solved

Network / IT environment RISK (non security risks)

Posted on 2011-02-18
4
611 Views
Last Modified: 2012-05-11
When you ask most forums or IT folk about “risk” within IT environments, most of them immediately think you are on about “security”, “penetration testing” etc. I am  not convinced security is the only risk factor in an IT environment. But I genuinely am interested in getting some feedback from other people on what other elements of an IT environment outside IT constiture risk areas

So.... outside of security, what other risks are inherent within IT environments. Does there exist a master document with risk areas for a typical IT environment anywhere? Or can you provide some examples for me to review further?
0
Comment
Question by:pma111
  • 2
4 Comments
 
LVL 3

Author Comment

by:pma111
Comment Utility
often known as a risk universe or audit universe
0
 
LVL 68

Accepted Solution

by:
woolmilkporc earned 250 total points
Comment Utility
OK,

there is the "Risk Management Guide for Information Technology Systems" by NIST.
http://www.hhs.gov/ocr/privacy/hipaa/administrative/securityrule/nist800-30.pdf

It introduces kind of a classification:

- Natural Threats - Floods, earthquakes, tornadoes, landslides, avalanches, electrical storms, and other such events.

- Human Threats (general) - Events that are either enabled by or caused by human beings, such as unintentional acts or deliberate actions (sabotage).
 
- Human Threats (IT related) - inadvertent data entry/data destruction, deliberate network based attacks, malicious software upload, unauthorized access to confidential information.

- Environmental Threats - Long-term power failure, pollution, chemicals, liquid leakage.


wmp
0
 
LVL 3

Author Comment

by:pma111
Comment Utility
Thanks, I will read through I was more after if anyone had conducted a recent risk analysis / risk universe that they would share as a template...
0
 
LVL 13

Assisted Solution

by:notacomputergeek
notacomputergeek earned 250 total points
Comment Utility
The State of California has developed this information:
http://www.cio.ca.gov/OIS/Government/risk/toolkit.asp

Of particular interest to you may be the 'Assessment Tool For State Agencies'. Fill this out to see where your organization ranks. Main categories are:
Organizational Reliance on IT
Risk Management
People
Processes
Technology

woolmilkporc already mentioned NIST SP 800-30 and listed the main topics of Business Continutity hazards.
0

Featured Post

Highfive Gives IT Their Time Back

Highfive is so simple that setting up every meeting room takes just minutes and every employee will be able to start or join a call from any room with ease. Never be called into a meeting just to get it started again. This is how video conferencing should work!

Join & Write a Comment

Suggested Solutions

Title # Comments Views Activity
Screen Recorder Recommendations 10 52
finding artist from picture(portrait) 5 52
Network Connection 5 31
Use of Training Budget 12 64
Even if you have implemented a Mobile Device Management solution company wide, it is a good idea to make sure you are taking into account all of the major risks to your electronic protected health information (ePHI).
With the shift in today’s hiring climate (http://blog.experts-exchange.com/ee-blog/5-tips-on-succeeding-in-the-new-gig-economy/?cid=Blog_031816), many companies are choosing to hire freelancers to get projects completed efficiently and inexpensively…
Saved searches can save you time by quickly referencing commonly searched terms on any topic. Whether you are looking for questions you can answer or hoping to learn about a specific issue, a saved search can help you get the most out of your time o…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…

772 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

15 Experts available now in Live!

Get 1:1 Help Now