Computer security and risk management - Essay ExampleThis paper presents a Risk Management methodology for multi-national pharmaceutical company in Midlands pertaining to protection of the Information assets and the corresponding business assets of the organization against the known threats to the organization.Introduction: Risk Management is an intelligent mix of qualitative and quantitative analysis. The qualitative analysis procedure essentially requires establishment of a structured and logical assessment framework whereby metrics are assigned to every parameter that is being assessed. The analysis against the metric levels needs to be quantitative based on past experiences (data available), industry experiences (case studies), advice from consultants and internal brainstorming. Every level needs proper justification to a deep level such that serious risks do not remain un-noticed and also meager risks do not get projected to the management as serious simply because they are more talked about in the organization.
