At any time, this service can help to identify what are the risks, understanding the operational context and threat landscape, based in the following practices:
- Red-team meetings with technical & management teams.
- Risk profile analysis, including top priorities provided by the customer
- The risk statement is established considering the likelihood and impact to the business.
- The risk priority takes into account:
- Likelihood of threat
- Likelihood of success
- Scale of impact
- Severity/priority per risk and ordered list of risk (worst to least)