ANALYSIS OF RISK ASSESSMENT METHODS

Information risks are related to the creation, processing, transmission, storage and use of information using electronic carriers and other means of communication. Prevention of information risks allows to ensure data integrity, confidentiality.

Risk analysis consists of identifying existing risks and assessing their size (quality or quantity). The risk analysis process can be divided into several sequential steps:

• Identify the main IT resources;

• Determining the importance of certain resources for the organization;

• Identify existing security threats and vulnerabilities that allow threats to be implemented;

• Identification of risks associated with the implementation of a security threat.