Sign in
get started
Sign in
get started
PCI DSS is now live in Drata. Learn More

Risk Assessment

Back to the Security & Compliance Glossary

JOIN THE HUNDREDS OF COMPANIES THAT TRUST DRATA
Trusted by the best:
Abnormal
Lemonade_logo
external-content.duckduckgo
Bamboo_HR_logo
logo for notion
clearbanc
smart-recruiters
Previous
Next

Terms

What is Risk Assessment?

A cyber security risk assessment identifies the information assets that could be affected by a cyber attack (such as hardware, systems, laptops, customer data and intellectual property). It then identifies the risks that could affect those assets.

A risk estimation and evaluation are usually performed, followed by the selection of controls to treat the identified risks.

It is essential to continually monitor and review the risk environment to detect any changes in the context of the organization, and to maintain an overview of the complete risk management process.

Drata Customer Case Studies

Subscribe & receive the latest content.

Subscribe & receive the latest content.

PUT COMPLIANCE ON AUTOPILOT

Get Started Today

Close more sales and build trust faster while eliminating the hundreds of hours of manual work that used to go into maintaining your SOC 2 report and ISO 27001 certification.

Get Started

joe-reeve2
Case Study:

Learn how Iteratively used Drata to get their SOC 2 report faster than most thought possible, and now monitor their security & compliance posture…

Read More