7.1: Description and Objectives
Description
This module introduces risk assessment processes and the types of assessments available. Students download the Department of Homeland Security (DHS) CSET tool that was introduced in Module 6. They install it and use it to perform a Cybersecurity Framework Critical Infrastructure Risk Assessment.
Objectives
- Identify the different risk assessment frameworks.
- Discuss Supply Chain Risk Management (SCRM) principles.
- Explain how regulatory requirements are used in determining additional items to review in a risk assessment.
- Demonstrate an understanding of the CSET tool risk assessment functions.
- Apply the CSET tool to an IT general risk assessment.
- Develop a report using CSET.
- Apply the standard available in the CSET tool to an IT general risk assessment.