Why Information Security Concern Me
Information security concerns everybody, because each one of us is exposed to information security risks every time we go online. To find out how much you are exposed to these risks, try the following Risk Assessment Test by choosing "Yes" or "No" to the questions below, then clicking the "Analysis" button.
Risk Assessment Test:
1.
I scan incoming emails using an anti-malware software as they are downloaded from the mail server.
2.
I regularly update my anti-malware software.
3.
I regularly backup my files.
4.
I seldom forward emails that ask me to send a warning message to others.
5.
I have a complicated password for my PC and email account, which I change regularly.
6.
I regularly apply security patches to my PC.
Analysis
Please answer all the above questions.
You may refer to the following table showing the necessary controls and the associated Vulnerabilities, Threats, Risks, and Security Concerns. Analysis
Table showing analysis on the risk assessment test
| If not doing the following actions | Vulnerabilities | Threats | Risks | Security Concerns |
|---|---|---|---|---|
| Scan incoming emails using an anti-malware software as they are downloaded from the mail server. | Lack of frontier protection |
Malware attack via email message and attachments
Malicious Code
|
Destruction of software and data
Denial of service
|
Confidentiality
Integrity
Availability
|
| Regularly update my anti-malware software. | Lack of regular update of anti-malware software |
Malicious Code
Malware attack
|
Destruction of software, data & facilities
|
Confidentiality
Integrity
Availability
|
| Regularly backup my files. | Lack of back-up facilities and processes |
Failure of communication services
Technical failures
|
Destruction of data & facilities
|
Integrity
Availability
|
| Seldom forward emails that ask me to send a warning message to others. | Lack of proof |
Hoax & email spam
|
Wasting time in reading
Wasting network bandwidth
Denial of service
|
Availability
|
| Have a complicated password for my PC and email account, which I change regularly. | Lack of sufficient access security |
Unauthorised data access
Unauthorised dial-in Access
Theft and Fraud
|
Loss of data
Destruction of data & software
Others acting on behalf of you and acting unlawfully
|
Confidentiality
Integrity
|
| Regularly apply security patches to my PC. | Lack of regular update of software patches |
Malicious Code
Malware attack
|
Destruction of software, data & facilities;
Others acting on behalf of you and acting unlawfully
Denial of Service
|
Confidentiality
Integrity
Availability
|
Undo
Related topic(s):
Information For:
