Threats

Create new threat

Threats are causes that result in an event. For example, incorrectly trained personnel performing work in an application can cause errors leading to data loss. This threat 'incorrectly trained employees' should be provided with a context so that people who are not involved in the risk analysis understand what is meant by this.

Fill in the name of the threat. At a description of this threat so that it is clear to others what is meant.

Establishing a relationship with resources

In order to be able to take measures against this cause, it is important to determine which organizational aspects are affected . The so-called PIOFACH or PESOSS is used for this.

1. Personnel (Staff)
2. Information
3. Organization
4. Finance
5. Automation
6. Communication
7. Housing

PESOSS:

1. People
2. Equipment
3. Software
4. Organization
5. Surroundings
6. Services

These aspects are ticked so that in determining the necessary control measures a relation can be made with processes or persons who play a role in solving them.

Furthermore, it is important to determine which quality aspects are affected by security. The most important aspects are Availability, Integrity and Confidentiality. These are chosen at . If none of these aspects apply, choose N/A (not applicable).

To save press 'SAVE' .

Go to:

• Events
• Threats
• Consequences
• Risk Assessment
• Treatment planning