Скачать книгу

variation, problem or symptom.

      In my belief, the answer to this question is clearly defined:

      5 Strongly Agree

      4 Agree

      3 Neutral

      2 Disagree

      1 Strongly Disagree

      1. Why is this needed?

      <--- Score

      2. Did you miss any major IT security risk assessment issues?

      <--- Score

      3. What do you need to start doing?

      <--- Score

      4. What are your needs in relation to IT security risk assessment skills, labor, equipment, and markets?

      <--- Score

      5. Who needs what information?

      <--- Score

      6. Do you need to avoid or amend any IT security risk assessment activities?

      <--- Score

      7. Do you need different information or graphics?

      <--- Score

      8. Are you dealing with any of the same issues today as yesterday? What can you do about this?

      <--- Score

      9. What prevents you from making the changes you know will make you a more effective IT security risk assessment leader?

      <--- Score

      10. Who should resolve the IT security risk assessment issues?

      <--- Score

      11. What IT security risk assessment capabilities do you need?

      <--- Score

      12. How do you identify the kinds of information that you will need?

      <--- Score

      13. What resources or support might you need?

      <--- Score

      14. For your IT security risk assessment project, identify and describe the business environment, is there more than one layer to the business environment?

      <--- Score

      15. What information do users need?

      <--- Score

      16. Will new equipment/products be required to facilitate IT security risk assessment delivery, for example is new software needed?

      <--- Score

      17. How do you recognize an objection?

      <--- Score

      18. Are there IT security risk assessment problems defined?

      <--- Score

      19. What are the minority interests and what amount of minority interests can be recognized?

      <--- Score

      20. What situation(s) led to this IT security risk assessment Self Assessment?

      <--- Score

      21. Do you know what you need to know about IT security risk assessment?

      <--- Score

      22. Does the problem have ethical dimensions?

      <--- Score

      23. What do employees need in the short term?

      <--- Score

      24. What is the problem and/or vulnerability?

      <--- Score

      25. Are there regulatory / compliance issues?

      <--- Score

      26. What would happen if IT security risk assessment weren’t done?

      <--- Score

      27. Would you recognize a threat from the inside?

      <--- Score

      28. How can auditing be a preventative security measure?

      <--- Score

      29. How are the IT security risk assessment’s objectives aligned to the group’s overall stakeholder strategy?

      <--- Score

      30. What activities does the governance board need to consider?

      <--- Score

      31. Which information does the IT security risk assessment business case need to include?

      <--- Score

      32. What is the problem or issue?

      <--- Score

      33. What are the stakeholder objectives to be achieved with IT security risk assessment?

      <--- Score

      34. As a sponsor, customer or management, how important is it to meet goals, objectives?

      <--- Score

      35. Who needs budgets?

      <--- Score

      36. How do you identify subcontractor relationships?

      <--- Score

      37. Which issues are too important to ignore?

      <--- Score

      38. What should be considered when identifying available resources, constraints, and deadlines?

      <--- Score

      39. What extra resources will you need?

      <--- Score

      40. Where do you need to exercise leadership?

      <--- Score

      41. What IT security risk assessment coordination do you need?

      <--- Score

      42. To what extent does each concerned units management team recognize IT security risk assessment as an effective investment?

      <--- Score

      43. What IT security risk assessment problem should be solved?

      <--- Score

      44. Is it needed?

      <--- Score

      45. Which needs are not included or involved?

      <--- Score

      46. How does it fit into your organizational needs and tasks?

      <--- Score

      47. What training and capacity building actions are needed to implement proposed reforms?

      <--- Score

      48. Are employees recognized or rewarded for performance that demonstrates the highest levels of integrity?

      <--- Score

      49. What IT security risk assessment events should you attend?

      <--- Score

      50. To what extent would your organization benefit from being recognized as a award recipient?

      <--- Score

      51. Who needs to know about IT security risk assessment?

      <--- Score

      52. What is the smallest subset of the problem you can usefully solve?

      <--- Score

      53. Does your organization need more IT security risk assessment education?

      <--- Score

      54. Can management personnel recognize the monetary benefit of IT security risk assessment?

      <--- Score

      55.

Скачать книгу