Security risk management plays a critical role in managing threats towards an overall system’s resilience.
It enables the identification of vulnerabilities and threats and the determination of suitable proactive control measures to tackle the related risks. Towards this, SENTINEL's cybersecurity risk assessment (CSRA) can be a useful tool for organizations, to identify vulnerable cyber assets, threats and to recommend preventive measures.
CSRA utilises three key concepts:
A risk event can be certain or uncertain and can be influenced by a single occurrence or a series of occurrences.
Likelihood indicates the frequency of an event and how probable it is to occur.
Severity is the expected result of an event (degree of injury, property damage or other mission impairing factors).
Risk is calculated on