Documente Academic
Documente Profesional
Documente Cultură
IT Governance
IT Governance is a system for ensuring business value of IT through effective use of resources ,performing risk management of IT assets and measuring performance for continuous improvement of IT
IT Governance
Are we achieving (or likely to achieve) the objectives of IT Governance Domains ? Strategic Alignment Does IT strategy support the organizations strategy ? IS IT delivering value to its clients and end users ?
Performance Measurement
IT Governance Domains
Value Delivery
What are the key risks to IT Assets and How to manage them ?
Resource Management
Risk Management
Information Security
Integrity
Availability Integrity
Property of protecting the accuracy and completeness of information
Availability
Property of being accessible and usable upon demand by an authorized entity
RISK
ISMS Lead Implementer Course
CIA
If the HR Master Data is not showing the updated records for all the timesheets submitted by the employees ; the payroll may not get processed on timely basis
CIA
If the user privileges are not changed after job change ; the user may be able to view unauthorized information
CIA
There is no backup site available for continuing critical business operations which may cause reputation and/or client loss
CIA
ISMS Lead Implementer Course
What is a Risk
Risk is Combination of probability and consequence of an event
Vul. Risk
Threat
Email Server Unavailable
Vul.
Configuration Change
Email server can become unavailable due to the power failure causing serious problems in internal and external communication , the probability of such event is high.
Vul.
Weak Password
Risk
Social Engineering
Password theft can occur due to the social engineering resulting in critical information leakage , the probability of such event is medium
RISK
Risk Classifications
Following are some classifications of Risk :
Call Centre Operations ,
Operational Risk Technology Risk Human Resource Risks Legal Risks Natural Risks (Force Majeure) Contractual Risks
ISMS Lead Implementer Course
Data and Privacy Regulations Use of new of State-of-theArt technology
Social Engineering
10
11
12
GAP ANALYSIS
13
Office No. 11 , Level. 10 , Arfa Software Technology Park , 346-B Ferozepur Road Lahore 54000 Pakistan Phone: +92-423-597-2112 Fax: +92-423-595-8117 Email :info [at] kinverg.com URL : kinverg.com Facebook.com/ kinverg Linkedin.com/company/ kinverg Twitter.com/ kinverg
PAKISTAN | KSA