Today I had a very interesting day conducting risk assessment – training (re:view) customized for a special branch of security and covert work. By using the Security Risk Management (SRM), we focused on the security risk schema, the intelligence collecting, and how to make adequate and accurate risk analysis. By identifying generic risks and specific actors driven risks and filing them, the company builds their own institutional know-how. These will be assessed by the 5 x 5 risk matrix based on likelihood and impact.

The systematic risk assessment SRM is an evaluation of relevance, urgency needs, and implementing methodology of the actor in a given operation or project. Using the 5 x 5 matrix, we present the risk and vulnerabilities without risk mitigating measurements, and eventually, we present the risk matrix after conducting the risk mitigating measurements.

The formula:

Likelihood X Impact = Risk