Too Long; Didn't Read
The goal of risk management is to identify potential problems before they emerge. Risk IT provides an end-to-end, comprehensive view of all risks related to the use of information technology (IT) The measure of an IT risk can be determined as a product of threat, vulnerability, and asset values. Risk management comprises of three processes: Risk assessment, Risk Mitigation, and Risk evaluation. The standard risk assessment methodologies form part of a risk management and assessment process depicted below in the figure which enables an organization to effectively identify, assess, and treat risks.