What is an IT risk assessment?

Harvey Betan explains the steps you need to take in order to perform an accurate risk assessment in your DR environment.

What is an IT risk assessment, and how can you properly evaluate the risks in your environment?

An IT risk assessment is a document that reviews the possible threats your organization faces, natural and/or man-made. These threats are weighted by the likelihood of occurrence and then multiplied by their affect on the operation. The result is a value that you can use to determine if you wish to protect against the threat (mitigate or eliminate it), or ignore it. The threats are based upon known occurrences such as a flood threat or geological fault.

When you assess the risks associated in your IT disaster recovery (DR) environment, you must be objective in the view and more importantly do some research into the likelihood of this risk actually occurring. There are many resources available on the internet to assist in the evaluation of an IT risk assessment, such as FEMA or NOAA.

For more on IT risk assessment and management:

Next Steps

How to include staff in your IT risk assessment planning

Dig Deeper on Disaster recovery planning - management