You are here: Home Our Activities Risk Management Files Deliverables
Personal tools
 

Deliverables

Risk Management Deliverables

No albums or photos uploaded yet.

Report/Study Inventory of risk assessment and risk management methods
Report/Study Information Packages for Small and Medium Sized Enterprises (SMEs)
Information packages for 2-3 types of organisations to help them in selecting and applying a suitable method for performing and managing information security related risks.
Report/Study Road map
Roadmap document
Report/Study Methodology for evaluating usage and comparison of risk assessment and risk management items
Report/Study Reference source for threats, vulnerabilities, impacts and controls in IT risk assessment and risk management
Report/Study Determining Your Organization’s Information Risk Assessment and Management
Report/Study Being diabetic in 2011
Identifying emerging and future risks in remote health monitoring and treatment
File ‘Being diabetic in 2011’ - Annex 1
File ‘Being diabetic in 2011’ - Annex 2
Report/Study Technology-induced challenges in Privacy & Data Protection in Europe
The ENISA Working Group on Privacy & Technology has been established to analyse the problems posed by these technology trends and the implications for the current EU legal framework. The main task of the Working Group is to propose actions to cope with these difficulties. In this report, we identify the main technology-induced gaps between data protection regulation and the realities of the developing socio-economic environment. We consider the potential threats and opportunities presented by state-of-the-art technologies and suggest priorities for tackling the most pressing gaps.
Report/Study Emerging and Future Risks Workflow
This document provides an initial description of the activities, steps, information flow and roles involved in the scenario based assessment process of Emerging Risk.
Report/Study Emerging and Future Risks Executable Workflow, UML Description
This document refines the contents of the Emerging Risk Workflow and provides details that allow for the implementation (both manual and automated) of the EFR process. It is based on UML specification.
Report/Study EFR Framework Handbook
This handbook provides the documentation of the EFR Framework which consists of a scenario-based process model developed in order to assess and manage emerging and future risks.
Report/Study EFR Collaboration Platform
This deliverable is the user guide of a portal implementing the collaboration within an EFR assessment (e.g. version management, notification, review, etc.). The document is a draft version that is under review.
Report/Study Technology-induced challenges in Privacy & Data Protection in Europe [French Version]
In this page you will find the French version of the report.
Report/Study Technology-induced challenges in Privacy & Data Protection in Europe [Spanish Version]
In this page you will find the Spanish version of the report.
Report/Study Technology-induced challenges in Privacy & Data Protection in Europe [German Version]
In this page you will find the German version of the report.
Report/Study Cloud Computing Risk Assessment
ENISA, supported by a group of subject matter expert comprising representatives from Industries, Academia and Governmental Organizations, has conducted, in the context of the Emerging and Future Risk Framework project, an risks assessment on cloud computing business model and technologies. The result is an in-depth and independent analysis that outlines some of the information security benefits and key security risks of cloud computing. The report provide also a set of practical recommendations.Produced by ENISA with contributions from a group of subject matter expert comprising representatives from Industry, Academia and Governmental Organizations, a risk assessment of cloud computing business model and technologies. This is an in-depth and independent analysis that outlines some of the information security benefits and key security risks of cloud computing. The report provide also a set of practical recommendations. It is produced in the context of the Emerging and Future Risk Framework project.
Report/Study Cloud Computing - SME Survey
Report/Study Cloud Computing Information Assurance Framework
One of the most important recommendations in the ENISA’s Cloud Computing Risk Assessment report is the Information Assurance Framework, a set of assurance criteria designed to assess the risk of adopting cloud services, compare different Cloud Provider offers, obtain assurance from the selected cloud providers, reduce the assurance burden on cloud providers.
Report/Study Briefing: Quantum Key Distribution
The purpose of this briefing is to give an introduction to the possibilities offered by quantum key distribution (QKD), as well as its limitations and the main issues of disagreement between experts in the field. ENISA Briefings are short descriptions of emerging issues in security aimed at policy and decision makers and are developed within the ENISA Emerging and Future Risks program. They give a brief introduction to the topic, areas of debate and propose a reasoned opinion on controversial points.
Report/Study Behavioural Biometrics
The purpose of this briefing is to give an introduction to the possibilities offered by behavioural biometrics, as well as their limitations and the main issues of disagreement between experts in the field.
Flash Video Cloud Computing Video
How can businesses and governments get the obvious benefits of cloud computing without putting their organisation at risk? This video gives an introduction to ENISA's Risk assessment and assurance framework for cloud computing in the words of the experts who contributed to the report.
File Deliverable of the ENISA ad hoc Working Group on National Risk Management Preparedness
This document presents the outcome of an ENISA Working Group on National Risk Management (NRM) preparedness (see the definitions below). It sets out the elements of a framework for the governance of NRM (see definitions) in relation to a country’s Critical Information Infrastructure (CII). As such it deals only with the management of information security risk in those critical information infrastructures, rather than risk management in the broader sense.
File Questionnaire for the assessment of National Risk Management Preparedness
This is the questionnaire in form of an excel sheet that allows for the assessment of National Risk Management Preparedness. The contents of this questionnaire correspond to the processes and maturity levels identified in the deliverable of the ad hoc Working Group on National Risk Management Preparedness.
Report/Study A simplified approach to Risk Management for SMEs
The aim of this document is to provide a simplified and comprehensive view of risk management/risk assessment for use within small and medium sized enterprises (SMEs). To achieve this goal, the present document has been structured in a modular way. It is made up of various parts each devoted to particular needs of stakeholders involved in the process of risk assessment and risk management. The philosophy behind the generation of this material was to shield (non-expert) users from the complexity of risk management and risk assessment activities. In doing so, some complex security matters have been simplified to the minimum needed to achieve an acceptable security level.
File Cloud Computing Risk Assessment - Spanish
Computación en nube, Beneficios, riesgos y reconendaciones para la seguridad de la Información
IPv6 ready - http://www.ipv6forum.com/