Threat-Based Risk Analysis
Threat-based risk analysis extends the scope of risk identification beyond an organization's assets and processes. This process mostly uses lists of known and existing threats. Typically, these are threats that can be in a period of time compared to the normal state.
- Based on existing and known threats, identify possible new risks that may arise
- Threats also increase the likelihood of known risks
- Supplementing risk assessment based on threats creates effective risk management
- This approach should complement, because it complements other methods of risk identification, because it captures a whole range of risks that may not continue.