Workshop – 4
Risk Treatment – Build the PDSP
After risk assessment comes the processes of risk treatment: identifying, evaluating and implementing the security measures needed to address the identified risks.
Risk treatment involves not just selecting controls, but understanding the outcomes of risk analysis: which risks are your priority; which risks should be handled by third parties; and which risks can be accepted.
We look beyond technical solutions to find the baseline changes to business processes required to address risk. The findings from your risk treatment analysis are used to compile your Protective Data Security Plan (PDSP).