Tool for risk assessment is intended to cover the risk assessment of all areas of the organization where stakeholders - security engineers and management system administrators, management of the organization, process owners and heads of departments, employees and contract agents, supervisors, auditors, and others need an easy way to assess the risks that are possible in the organization and associated appropriate measures which are carried out by the organization in order to reduce these risks.
How to ensure a transparent and at the same time an easy way to assess the risk? With the software, which facilitates the work of the assessors, it is possible to assess all areas in the organization in a transparent and simple manner. Since there are very few examples of software that would allow assessors to carry out risk assessment in accordance with standards and legislation and that would be at the same time sufficiently simple not to cause substantial burden for key business processes owners, the modular architecture of software could help to improve risk assessment, implementation of measures for improvement and throughout this improve the business of the organization. Aim of the thesis is that on the basis of laws and standards methodological approach is prepared which is realized in the appropriate software tool that will improve the management of the organization in the segment of risk assessment.
|