ASIS Victoria Cyber for Physical Security Series - Risk Management

Review of Webinar 2 of 4

Risk Management was the follow up from Cybersecurity Governance. This session covered the Framework of covering the Identifying Risks and Classifying them by order of importance.

Our host, Richard Magalad, shares how to create a Risk Heat Map that you can use on your next assessments.

Watch the Webinar from this link

https://zoom.us/media/share/VMIrR0acSD6IkaXFFfS9MA?module=clips&product=video-center [zoom.us]

Top 7 Takeaways

1 You can't manage risk without knowing your assets —always start with an inventory.
2 Risk management doesn't have to be complex —a simple 5×5 matrix is enough to get started.
3 Formalise your customer's risk appetite early —it drives all treatment decisions.
4 Use Advanced IP Scanner, DHCP logs, and walk through the site to find assets.
5 A heat map is your most powerful communication tool —it turns data into decisions.
6 Every risk needs an owner, a treatment, and a review date —or it will be ignored.
7 Documenting declined recommendations protects you legally and builds long-term trust.