Risk Management
Read this page and watch the video to learn more about the purpose of risk management and the four stages of the risk management process. Before you move on, make sure you have a good understanding of the formulas, and that you are able to use the formulas on this page to calculate single loss expectancy (SLE), annual rate of occurrence (ARO), and annual loss expectancy (ALE).
Instruction
Statement of Applicability (SOA)
The statement of applicability is a document that identifies the controls chosen for an organization's environment. The SOA is derived from the risk assessment and explains how and why these controls are appropriate.
Read The importance of Statement of Applicability for ISO 27001 which discusses why an SOA is needed and why it is useful.
Read The importance of Statement of Applicability for ISO 27001 which discusses why an SOA is needed and why it is useful.