Risk Assessment

Schedule of Risk Assessments for Information Security [DOC]

Risk Assessment Tools

These are approved tools and documents for conducting risk assessments at Iowa State University. For further information or explanation contact the Director, IT Security and Policies in IT Services. This office is available to assist departments in understanding the risk assessment process and getting started on completing their forms.

• Business Impact Analysis and Risk Assessment for Information Technology [DOC]

  This document contains general information and a description of the risk assessment process. A list of common risks is included to help evaluate the risks in a particular environment. A sample template [DOC] for the report is also available.

• Examples of IT Security Risks and University Impact

• Risk Prioritization [XLS]

  This spreadsheet will help prioritize which risks should be addressed first.

• Payment Card Industry Self Assessment

  Information on the Payment Card Industry Data Security Standard (PCIDSS) can be found on the PCI Security Standard Council website. Every entity that processes, stores, or transmits credit card information will use this form for completing the self assessment. The form is sent to the PCI compliance officer in the Treasurer's Office and a copy to the Director, IT Security and Policies, IT Services.

Copyright © 1995-2008, Iowa State University of Science and Technology. All rights reserved.

• ISU INDEX
• A
• B
• C
• D
• E
• F
• G
• H
• I
• J
• K
• L
• M
• N
• O
• P
• Q
• R
• S
• T
• U
• V
• W
• X
• Y
• Z