Your Tech Helper

  As a security administrator, the various risk management activity I will perform for my company – First of all the questions that I need to ensure from the company’s point of view before going for the actual Risk management activity- 1.       Has it been communicated to staff that protecting the system is in everyone's best interests? 2.       Has an effort been made to increase staff awareness of security issues? 3.       Has appropriate staff security training been provided? 4.       Are security activities regularly monitored? 5.       Has administrator support been garnered? 6.       Has user support been sought? 7.       Has a security breach response plan been developed? 8.       Have contingency plans been developed to deal with significant and probable threats? 9.       Are response and contingency plans frequently and exhaustively tested? 10.    Has a backup plan been developed and implemented? 11.    Is a virus protection system in place? 12.