Risk Assessment Methodology.
Abstract
This report treats risk assessment as an organized examination of events and conditions that could harm a Navy ADP system or facility. A comprehensive risk assessment does the following: Identifies conditions or potential events that threaten harm to the ADP system or facility, and evaluates the seriousness of these threats; Identifies and evaluates conditions within the ADP system or facility that could allow the ADP system or facility that could allow the ADP system or facility to be damaged, i.e., its vulnerabilities; Identifies and evaluates the properties and importance of all of the resources of the ADP system or facility, i.e., its assets; Estimates the Annual Loss Expectancy (ALE) of the ADP system or facility from the threats being realized; Estimates the level of risk to which classified, sensitive, or mission-essential assets are exposed; and Identifies the most dangerous or costly weaknesses of the ADP system or facility, and recommends the most cost-effective way to remedy them. Risk assessment involves detailed examination of the threats to the ADP system or facility; the missions, assets, and procedures of the system or facility; and the operational and security weaknesses of the system or facility. Of the ADP system or facility. Changes in the mission, configuration, location, or procedures of the system or facility are cause for a review of the existing risk assessment.
Document Details
- Document Type
- Technical Report
- Publication Date
- Jul 01, 1979
- Accession Number
- ADA072249
Entities
Organizations
- System Development Corporation