CalQrisk-CIO
|
The objectives of the Information Technology function are diverse and dynamic in response to the business needs. IT is sometimes a driver, sometimes a supporter, but always an essential part of the enterprise. CalQrisk-CIO is a regular health check on how you are managing Risk. CalQrisk-CIO is a self assessment tool that informs the risk position of all aspects of the IT professional's operating environment. Using the knowledge that is in the organisation the tool leads your appointed "assessors" through a process, the outcome of which is a risk register. The register shows the inherent risk position and the residual risk position numerically. It confirms the principle controls you have in place and, where they exist, points out gaps in your risk mitigation. You do not have to be a risk professional to manage risk professionally This tool makes the management of risk part of the routine of managing Information Technology. With CalQrisk-CIO you can systematically assess risks arising in the areas shown in the framework. CalQrisk-CIO • facilitates assessment of all aspects of the Information Technology function • goes beyond compliance to drive business excellence • is intuitive to use • generates a comprehensive risk register • suggests additional mitigation actions to address gaps in controls • makes full use of the wisdom of the organisation |
 Risk Assesment Framework CIO
|
