Abstract:
Delays caused by partial or total breakdown of an IT system could also be very costly to the organisation. As a result, a proper risk management strategy is required to allay potential risks. Failing this, the organisation will be made vulnerable, thereby affecting its competitive advantage. Technology is continually evolving, particularly in the IS environment, which introduces new vulnerabilities. Threats continue to evolve as well and sometimes, even what is designated as a critical asset, changes because the needs and priorities of an organisation change. Therefore, due to this fact, a proper risk management plan will always be needed.