Activity
Evaluate possible IT actions
Evaluate possible risk responses ICS ERM
Organisation
Responsible
Accountable
Input/Output
Input data
Output data