 |
|
Upon the completion of risk assessment, vulnerabilities analysis
and business impact analysis, the concluding step in the risk
management process is risk mitigation. Risk mitigation is a
conscious and concerted effort to minimize the client's overall
risk exposure in an organized and timely fashion. Risk mitigation
is not disaster recovery itself; it is about disaster prevention
and avoidance. This OCP module is designed to:
| · |
Prescribe the list of tasks involved
to mitigate the risks and vulnerabilities identified in
the risk assessment and vulnerabilities analysis modules. |
| · |
Define the roles and responsibilities
of individuals assigned to undertake the tasks |
| · |
Set the expected completion deadlines
for the agreed tasks. |
| · |
Monitor the mitigation effort as
it progresses. |
| · |
Verify that the mitigation work is
completed, hence the risks reduced and the vulnerabilities
removed. |
In conclusion, while risks cannot be totally eliminated, they
can be mitigated most of the time. Every reduction in the level
of risk is equitable to an increase in the possibility that
the client will survive in an undesired event.
|
|
|
|
Copyright
2005 All rights reserved.