Assessment Date: [Enter Date]
Assessor(s): [Enter Assessor(s) Name]
Purpose and Objectives:
[Describe the purpose and objectives of the risk assessment.]
Scope:
[Define the scope of the assessment, including the systems, processes, and data involved.]
Asset Inventory:
List all IT assets within the scope of the assessment.
| Asset ID | Asset Description | Owner | Criticality (High/Medium/Low) | Impact Description | Impact Level (High/Medium/Low) |
|---|---|---|---|---|---|
| 1 | |||||
| 2 |
Identify potential threats to each asset.
| Threat ID | Asset ID | Threat Description | Threat Source | Likelihood (High/Medium/Low) |
|---|---|---|---|---|
| 1 | ||||
| 2 |