CNI/Risk management

Question 1

13 CNI sectors

Answer 1

chemicals
 civil nuclear
 communication
 defence
 emergency services
 energy
 finance
 food
 government
 health
 space
 transport
 and water

Question 2

National risk register

Answer 2

takes high level risks, puts them into a risk matrix and assigns departmental owners for mitigation

Blackett reviews, eg GNSS and space weather useful to highlight potential threats from each risk and potential mitigation measures.

Question 3

Define risk

Answer 3

possibility of something happening - Risk = hazard x exposure x vulnerability

effect of uncertainty on objectives - Risk = probability x consequences

Question 4

Define risk management

Answer 4

coordinated activities to direct and control an organisation with regard to risk

ISO 31000

Question 5

Risk management tools

Answer 5

register - table - risk, owner, overall rating, current rating, target rating, trend

matrix - grid of likelihood against impact

Question 6

Inherent risk?

Answer 6

risk before treatment

Question 7

residual risk

Answer 7

risk with currently implemented treatments

Question 8

target risk (risk apetite)

Answer 8

elve of risk with planned treatment

Question 9

Risk options from ISO 31000

Answer 9

Avoid - don't do the activity
Eliminate - remove the risk source
Likelihood - change
Consequence - change
Share/Transfer - insurance/partnerships
Retain - informed decision
Take/Increase - pursue opportunity