风险评估管理程序

风险评估管理程序 历史修订记录序号更改单号更改说明修订人生效日期现行版次目 录1 概述.........................................................................52 术语与定义...................................................................52.1 风险管理...................................................................52.1.1 风险评估.................................................................52.2 其他.......................................................................63 风险评估框架及流程...........................................................73.1 风险要素关系...............................................................73.2 风险分析原理...............................................................93.3 实施流程...................................................................94 风险评估准备过程............................................................104.1 确定范围..................................................................104.2 确定目标..................................................................114.3 确定组织结构..............................................................114.4 确定风险评估方法..........................................................114.5 获得最高管理者批准........................................................115 风险评估实施过程............................................................115.1 资产赋值..................................................................135.1.1 资产分类................................................................145.1.2 资产价值属性............................................................175.1.3 资产价值属性赋值标准....................................................195.2 威胁评估..................................................................235.2.1 威胁分类................................................................235.2.2 威胁赋值................................................................265.3 脆弱性评估............................................