Threat Vulnerability Assessment

Threat Vulnerability Assessment - Sarbanes Oxley Compliance Tool

The Threat Vulnerability Assessment Tool is one component of a series of HandiGuide® Tools that are used to assess threats and vulnerabilities associated with both physical and electronic locations. This process is mandated by Sarbanes Oxley and has been used by scores of our clients.

Sarbanes Oxley compliance requires enterprises to conduct a risk vulnerability and threat vulnerability assessment.  The process concludes with a security vulnerability assessment.

This form is 3 pages in length. It should be completed for each physical location of the enterprise and for each business application and the location that the application/process is used. Sections of the Tool include the following:

  • Demographics of each physical location,

  • Access to each facility at each physical location,

  • Environmental factors associated with each physical location,

  • IT and business process at each facility,

  • A risk ranking matrix with a scoring mechanism that looks at:

    • Vulnerability as measured by probability of the threat occurring versus,

    • The impact of the loss

    • Rules for scoring the risk.

The tool comes in PDF, WORD, and EXCEL formats that can be modified, or both.