-
Scope & Framework
Definition of Scope & Framework
-
Risk Acceptance
Risk Acceptance (optional process)
-
Need
The Need for ISMS
-
Critical success factors
Critical success factors for ISMS
-
Framework
The ISMS Framework
-
Submit & Update
Submitting & Updating Methods and Tools
-
Template
Template of Risk Management - Risk Assesment Methods
-
Submit & Update
Submitting & Updating Methods and Tools
-
Template
Template of Risk Management - Risk Assesment Tools
-
Comparability / Interoperability
Comparability / Interoperability of methods and tools
-
Identification of combinations
Identification of combinations of methods
-
Demonstrators and awareness
Generation of demonstrators and awareness material
-
Software base
Generation of an installed software base
-
Risk Management Integration
Integration of Risk Management with other processes/disciplines
-
Planning & Initiation
Integration of Processes - Planning and Initiation
-
Quality Assurance
Integration of Processes - Quality Assurance
-
Design (conceptual)
Implementation of Business Governance - design level (conceptual)
-
Design (process flow)
Implementation of Business Governance - design level (process flow)
-
Execution (conceptual)
Implementation of Business Governance - Execution level (conceptual)
-
Execution (process flow)
Implementation of Business Governance - Execution (process flow)
-
Modeling Tool
The Modelling Tool ADOit 3.0®
-
Scope
IT Continuity: Scope
-
Assumptions
IT Continuity: Assumptions
-
Approach
IT Continuity: Approach
-
Structure
IT Continuity: Structure & Targets
-
Define Framework
Define BCM Framework
-
Conduct BI Analysis
Conduct Business Impact Analysis
-
Design Approach
Design BCM approach
-
Deliver BCP
Deliver BCP Plan
-
Sustain BCM
Sustain BCM programme
-
IT RM & BC
Relationship between IT Risk Management & Business Continuity
-
Initiate BCM
Initiate a BCM Programme
-
Identify Organisation
Identify the Organisation
-
Management
Business Continuity Management Team
-
Steering Committee
Business Continuity Steering Committee
-
Senior management team
Senior management team (Gold team)
-
Incident management team
Incident management team (Silver team)
-
Business unit management team
Business unit management team (Bronze team)
-
Example
Example of how the three-tier incident response would operate
-
Define drivers
Define BC drivers
-
Assessment
Assess Risks and Impacts
-
Analysis
Analyze Results
-
Prioritise recovery
Prioritise recovery/define critical resource requirements
-
Assess Risks & Impact
Determine recovery options
-
Analyze Results
Agree recovery strategy
-
IT Reqs & Gap Analysis
IT Requirements & Gap Analysis
-
Determine test
Determine type of test
-
Report test
Deliver debrief and test report
-
Sustain BCM
Sustain BCM Programme
-
Usage
Usage of this section
-
Scope
Scope: relevant documents
-
Normative Framework
Template and structure of the normative framework
-
eBusiness
E-Business
-
RM/RA Standards
Risk Managemet / Risk Assessment Standards
-
Downloads
Downloads related to RM Laws & Regulations
-
Risk Management and Risk Assessment for SMEs
Risk Management and Risk Assessment for SMEs scrutinized- how appropriate is the ENISA simplified security approach?
-
ENISA approach to Business Continuity for SMEs
Deliverable 2010: A Business Continuity Approach for SMEs
-
Ad-hoc Working Group on Risk Assessment and Risk Management
Ad-hoc Working Group on Risk Assessment and Risk Management
-
WG 2007-2008
Ad-hoc Working Group on Risk Assessment and Risk Management (WG-RARM)
-
WG 2006-2007
Ad-hoc Working Group on Risk Assessment and Risk Management
-
WG 2005-2006
Ad-hoc Working Group on Risk Assessment and Risk Management
-
Ad hoc ENISA Working Group on National Risk Management Preparedness
The present page is the central location of information about the Terms of Reference for the ENISA Working Group on National Risk Management Preparedness (WG NRMP) and the generated deliverable.
-
Working Group on Economics of Security
ENISA aims at collecting and analysing existing knowledge available in the area of Economics of Security. Besides an open consultations to collect relevant information on relevant topics, literature, open issues and relevant stakeholder groups...