Click on the titles for each section and it will take you to the relevant section of the User Guide. The below is the recommended workflow for completing information in Abriska to provide the outputs for an ISO 27001:2022 compliant risk assessment.
- Divisions
- Contacts
- Documents
- Risk Appetite
- Identifying information assets
- Identifying supporting assets
- Asset relationships
- Asset CIA scoring
- Mapping to Assets
- Mapping to Controls
- Scoring
- Control Applicability
- Control Ownership
- Mapping to assets
- Control Maturity Assessment
- Risk Assessment set up
- Risk Assessment steps
- Specific vulnerabilities
- Vulnerabilities Risk Treatment
- Risk Register Breakdown
- Risk decisions
- Creating Risk actions
- Understanding risk treatment decisions
- Statement of applicability
- Risk Register
- Risk Treatment Plan
Return to Abriska User Guides
