Loading...
Help
COMPLIANCE RISK_MANAGEMENT_REPORTING Information Security Risk Management Reporting Used to track and manage any Risks or Incidents.

Form Builder

Cut Copy Paste Reload Toolbox
Form Structure
Text Controls
Typed Controls
Date and Time
Selection Controls
Attachments
Buttons
Advanced
Permissions
Orbeon Forms PE Feature

Information Security Risk Management Reporting

It appears that you are using Internet Explorer or earlier. Form Builder is likely not working properly with this browser. We recommend you upgrade to Internet Explorer or newer, or use Google Chrome, Firefox, Safari, or Opera. If we made a mistake and you are not using Internet Explorer or earlier, please let us know.
Form Settings
It appears that you are using Internet Explorer or earlier. Form Builder is likely not working properly with this browser. We recommend you upgrade to Internet Explorer or newer, or use Google Chrome, Firefox, Safari, or Opera. If we made a mistake and you are not using Internet Explorer or earlier, please let us know.

Control Settings
Section/Grid Settings
Edit Choices
Confirm

Information Security Risk Management Reporting

Missing or incorrect value
Missing or incorrect value
Missing or incorrect valueWeakness described against the asset
What is the threat to the business.

Data Security

<div><span><strong>Normal</strong> - Public/Open </span></div><div><span><strong>High</strong> - Internal or Propietary </span></div><div><span><strong>Very High</strong> - Confidential or Restricted</span></div>
<div><span>Is personal data </span>affected?</div>
<div><span>Confidentiality is about ensuring access to data is restricted to only the intended audience and not others. As you may expect, the more sensitive the information is, the more stringent the security measures should be.</span></div><div><strong>Low - </strong>The unauthorized disclosure of information could be expected to have a limited adverse effect on organizational operations, organizational assets or individuals</div><div><strong>Medium -</strong> The unauthorized disclosure of information could be expected to have a serious adverse effect on organizational operations, organizational assets or individuals.</div><div><strong>High -</strong> The unauthorized disclosure of information could be expected to have a severe or catastrophic adverse effect on organizational operations, organizational assets, or individuals.</div>
<div><span>Integrity refers to maintaining the accuracy, </span></div><div><span><strong>Low -</strong> The unauthorized modification or destruction of information could be expected to have a limited adverse effect on organizational operations, organizational assets, or individuals. </span></div><div><span><strong>Medium -</strong> the unauthorzied modification or destruction of information could be expected to have a serious adverse effect on organizational operations, organizational assets, or individuals. </span></div><div><span><strong>High -</strong> The unauthorized modification or destruction of information could be expected to have a severse or catastrophic adverse effect on organizational assets, or individuals. and completeness of data. In other words, it is about protecting data from being modified by unauthorized parties, accidentally by authorized parties.</span></div>
<div><span>Lastly, information must be available when it is needed. To ensure high data availability, you must maintain a correctly functioning hardware and software and provide adequate bandwidth. </span></div><div><span><strong>Low -</strong> the disrution of access to or use of information or an information system could be expected to have a limited adverse effect on organizational operations, organizational assets, or individuals. </span></div><div><span><strong>Medium -</strong> The disruption of access to or use of information or an information system could be expected to have a serious adverse effect on organizational operations, Organizational assets, or individuals. </span></div><div><span><strong>High - T</strong>he disrution f access to or use of information systems could be expected to have a severe or catastrophic adverse effect on organizational operations, organizational assets, or individuals.</span></div> .
<div>How did you handle Risk? </div><div><strong>Risk Modification –</strong> Take counter measures to reduce the risk value</div><div><strong>Risk Retention</strong> – Accept the risk as it is </div><div><strong>Risk Avoidance –</strong> Change the environment that the risk will not occur as it is described.</div><div><strong>Risk Sharing –</strong> Share the impact of the risk with a third party (Insurance).</div>

PRE-MITIGATION

What is the impact based on the chart. Acceptable - Little to no effect on event Tolerable - Effects are felt, but not critical to outcome Undesirable - Serious impact to the course of action and outcome Intolerable - Could result in disaster.
What is the likelihood that this will happen again? Improbable - Risk is unlikely to occur Possible - Risk will likely occur Probable - Risk will occur.
The system will automatically calculate this.

MITIGATIONS / WARNINGS / REMEDIES / REMARK

What will you be doing to redeuce or eliminate the Risk or Incident
<div><span>What is the impact based on the chart.</span></div><div><span><strong>Acceptable -</strong> Little to no effect on event </span></div><div><span><strong>Tolerable -</strong> Effects are felt, but not critical to outcome </span></div><div><span><strong>Undesirable -</strong> Serious impact to the course of action and outcome Intolerable - Could result in </span>disaster.</div>
<div><span>What is the likelihood that this will happen again? </span></div><div><span><strong>Improbable -</strong> Risk is unlikely to occur </span></div><div><span><strong>Possible -</strong> Riusk will likely occur</span></div><div><span><strong> Probable -</strong> Risk will occur</span></div>
Automatically calculated by the system.
Evidence Remove File
File Attachment Remove File
Remove File

Review

Comments
Expand Shrink Delete Control Control Settings Mark this checkbox if you'd like to type HTML tags Click to enter a label Type your label here Click to add a hint Type your hint here Click to enter text Type your text here Remove File Remove File
Delete Section Section Settings Edit Help Move Up Move Down Move Right Move Left
Delete Grid Grid Settings Insert Column to the Left Delete Column Insert Column to the Right Insert Row Above Delete Row Insert Row Below
true
 Remove File Remove File
Remove File
Source
Add Language
Attach a PDF template file
Remove File
Publish Form

XML Schema Upload
Remove File
HTTP Service Editor
Actions Editor
Database Service Editor
Confirm
Question
Form Preview
Confirm
Found draft
Found draft
Found drafts
Existing form data found
Form Submitted
Review Form Validation Messages
Unable to complete action
Confirmation