Business Requirements Flashcards
In the asset inventory give examples of tangible and intangible assets.
Assets can be tangible items such as IT Hardware, retail inventory and buildings but they can also be intangible assets such as public perception, goodwill intellectual property.
Why do we need an asset inventory ?
In order to protect assets you need to know what and where they are.
What process covers the valuation of the assets ?
Business Impact Analysis
Who is responsible for assigning valuations to assets ?
Data Owners
What is the danger of allowing data owners to value assets ?
They tend to overvalue the assets
Name two common methods in attributing value to assets ?
Insured value or replacement cost
What is the determination of criticality ?
Determination of Criticality is a part of the BIA effort to determine those assets without which the organisation could not operate or exist.
Who determines the criticality of assets ?
Senior Management
What process is responsible for identifying single points of failure ?
Business Impact Analysis
Are single points of failure limited to solely tangible assets ?
No they can also be present in business processes
Give some examples of remediations of single points of failure?
Adding redundancy for replacement
Creating alternative processes
Cross Training personnel to fill many roles
Consistent backing up of data
Load sharing and balancing of IT assets
What is risk appetite ?
The level amount or type of risk that an organisation finds acceptable.
What is the definition of a risk ?
Liklihood an impact will be realised
Can a risk be eliminated ?
No only reduced
Which risks are not allowed to be accepted by an organisation ?
regulatory risks, risks to do with human safety and industry standards
What are the four ways to manage risks
Avoidance
Acceptance
Transference
Mitigation
What is risk avoidance ?
It is the leaving of a business opportunity because the risk is to high