Perhaps I'm not searching hard enough but I'm having a difficult time finding a risk assessment template for my team to use. Our focus in DLP.
I'd like for the template to help us identify the Who, What, How, When questions.
e.g. Sales Reps can access files on the J: share drive but are not allowed to send them to non-company email domains.